We use cookies to improve your experience on our site.
AVID-2026-R0429
Description
Cline Bot AI Coding Agent Data Exfiltration via Prompt Injection and DNS
Details
Through malicious instructions planted in a source code file, Cline can be coerced into exfiltrating sensitive key material from a user’s environment to an attacker-controlled location. Cline is vulnerable to prompt injection when analyzing source code files. Furthermore, this prompt injection can be used to execute what is considered a safe command (ping), which requires no user approval, in a way that will exfiltrate sensitive key material to an attacker-controlled location.
References
- Mindgard Disclosure
- From Prompt to Pwn: Cline Bot AI Coding Agent Vulnerabilities
- Cline AI Coding Agent Website
Affected or Relevant Artifacts
- Developer: Cline
- Deployer:
- Artifact Details:
| Type | Name |
|---|---|
| System | Cline Coding Agent |
Impact
- (none)
Other information
- Report Type: Advisory
- Credits: Aaron Portnoy, Mindgard
- Date Reported: 2025-08-27
- Version: 0.3.1
- AVID Entry