CVE-2026-4399

Name of the Vulnerable Software and Affected Versions 1millionbot Millie chatbot (affected versions not specified)

Description A prompt injection issue exists in the 1millionbot Millie chatbot. This occurs when a user bypasses chat restrictions using Boolean prompt injection techniques, constructing a question to elicit an affirmative ('true') response that triggers the execution of injected instructions. Successful exploitation allows a remote attacker to misuse the service, obtain prohibited information, or execute unintended tasks leveraging 1millionbot’s resources and/or the OpenAI API key. This bypasses containment mechanisms during LLM model training, enabling restricted responses or behaviors. The API key used by 1millionbot could be compromised.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.