Skip to content

Hide Navigation Hide TOC

Chatbox History Exfiltration via Prompt Injection (CVE-2024-48144, CVE-2024-48145) - ATR-2026-00431 (308bcc90-4e28-50f1-a852-503396996487)

Detects prompt-injection attacks targeting chatbox interfaces that ask the assistant to dump prior or subsequent conversation turns, system prompts, or hidden context. Two real-world disclosures use this exact attack class: CVE-2024-48144 (Fusion Chat AI Assistant v1.2.4.0, CVSS 9.1) and CVE-2024-48145 (Netangular ChatNet AI v1.0, CVSS 9.1). Both allow an attacker to "access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message." This rule detects the prompt patterns themselves, not just product-specific PoC.

Cluster A Galaxy A Cluster B Galaxy B Level
LLM Prompt Injection (19cd2d12-66ff-487c-a05c-e058b027efc9) MITRE ATLAS Attack Pattern Chatbox History Exfiltration via Prompt Injection (CVE-2024-48144, CVE-2024-48145) - ATR-2026-00431 (308bcc90-4e28-50f1-a852-503396996487) Agent Threat Rules 1
LLM Data Leakage (45d378aa-20ae-401d-bf61-7f00104eeaca) MITRE ATLAS Attack Pattern Chatbox History Exfiltration via Prompt Injection (CVE-2024-48144, CVE-2024-48145) - ATR-2026-00431 (308bcc90-4e28-50f1-a852-503396996487) Agent Threat Rules 1
Unsecured Credentials - T1552 (435dfb86-2697-4867-85b5-2fef496c0517) Attack Pattern Chatbox History Exfiltration via Prompt Injection (CVE-2024-48144, CVE-2024-48145) - ATR-2026-00431 (308bcc90-4e28-50f1-a852-503396996487) Agent Threat Rules 1