Echarris128

**Name of the Vulnerable Software and Affected Versions** Kilo Code versions prior to 4.86.0 **Description** A flaw exists in Kilo Code that allows for injection through manipulation of the `ClineProvider` function within the `src/core/webview/ClineProvider.ts` file of the Prompt Handler component. This issue can be exploited remotely. The exploit is publicly available. The vulnerable component is the Prompt Handler. **Recommendations** Apply a patch to address this issue.