CVE-2024-48139

Name of the Vulnerable Software and Affected Versions Blackbox AI version 1.3.95

Description A prompt injection issue in the chatbox allows attackers to access and exfiltrate all previous and subsequent chat data between the user and the AI assistant via a crafted message.

Recommendations For Blackbox AI version 1.3.95, as a temporary workaround, consider restricting access to the chatbox until a patch is available. Avoid using the chatbox with sensitive information until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.