Skip to content
ATR-2026-00148highPrompt Injectionexperimental

Multilingual Prompt Injection via Language Switch

Detects prompt injection delivered in non-English languages to evade English-centric detection rules. Common patterns include German "ignoriere", Chinese "忽略/忽视/无限制", Spanish "ignora/sin restricciones", Japanese "制限のない". Crystallized from 216 adversarial samples.

Severity
high
Category
Prompt Injection
Scan Target
mcp
Author
ATR Threat Cloud Crystallization

Response Actions

alertblock input

References

OWASP Agentic
ASI01 - Prompt Injection
OWASP LLM
LLM01:2025 - Prompt Injection
View full YAML on GitHub →

More Prompt Injection Rules

ATR-2026-00001highDirect Prompt Injection via User InputATR-2026-00002highIndirect Prompt Injection via External ContentATR-2026-00003highJailbreak Attempt DetectionATR-2026-00004criticalSystem Prompt Override AttemptATR-2026-00005mediumMulti-Turn Prompt Injection