Blackbox AI VS Code Extension Gives Attackers Root Access Through Hidden Prompt in an Image
ERNW found a critical prompt injection flaw in Blackbox AI's VS Code extension (4.8M installs). A hidden prompt in an image gave the attacker full root access to the system.
Read more →