An attacker with access to the PandasAI interface can perform prompt injection attacks, instructing the connected LLM to translate malicious natural language inputs into executable Python or SQL code.

Django fixes SQL Injection vulnerability in new releases Django, an open source Python-based web framework has patched a high severity vulnerability in its latest releases.