Back to directory
WRITEUP #6589

Using Threat Modeling and Prompt Injection to Audit Comet

Web SecurityPrompt InjectionInformation Disclosure
by@trailofbits(Trail of Bits)
Published
Feb 20, 2026
Added to HackDex
Mar 16, 2026
Read Full Writeuphttps://blog.trailofbits.com/2026/02/20/using-threat-modeling-and-prompt-injection-to-audit-comet/
RELATED WRITEUPS
P3 (Medium) : How I Gain Access To NASA's Internal Workspace?!
ReconInformation disclosure
Microsoft Copilot: From Prompt Injection to Exfiltration of Personal Information
AI / LLMAI
How I Got Bugs From Google Dorks
ReconInformation disclosure
How I can easily get four P1 at NASA using Simple Google Dorking.
ReconInformation disclosure
Vulnerabilities in Homepage Dashboard
RCESSRF

Built with ❤️ by Shubham Rawat