Skip to content

Hide Navigation Hide TOC

Parameter Injection via Tool Arguments - ATR-2026-00066 (88b1727b-fc29-5653-b020-652c4e0d6ed0)

Detects injection attacks delivered through MCP tool arguments. An attacker crafts tool arguments that contain shell metacharacters, SQL injection payloads, path traversal sequences, or template injection syntax. Unlike prompt injection (which targets the LLM), parameter injection targets the tool's backend processing and can lead to RCE, data breach, or privilege escalation on the tool server.

Cluster A Galaxy A Cluster B Galaxy B Level
Parameter Injection via Tool Arguments - ATR-2026-00066 (88b1727b-fc29-5653-b020-652c4e0d6ed0) Agent Threat Rules Indirect (a4a55526-2f1f-403b-9691-609e46381e17) MITRE ATLAS Attack Pattern 1
LLM Prompt Injection (19cd2d12-66ff-487c-a05c-e058b027efc9) MITRE ATLAS Attack Pattern Indirect (a4a55526-2f1f-403b-9691-609e46381e17) MITRE ATLAS Attack Pattern 2