Model Injection Attack

Table of Contents
NeurIPS
ICML
CVPR
AAAI
AISTATS
KDD
CCS
ACL
NAACL-HLT
EMNLP
COLING
SIGIR
ICDM
WACV
WWW
SP
USENIX Security Symposium
ICSE
CIKM
IEEE Trans. Inf. Forensics Secur.
ACM Trans. Priv. Secur.
Proc. VLDB Endow.
IEEE Trans. Parallel Distributed Syst.
IEEE Trans. Comput. Aided Des. Integr. Circuits Syst.
Expert Syst. Appl.
Neural Networks
Neurocomputing
Neural Comput. Appl.
J. Artif. Intell. Res.
IEEE Trans. Syst. Man Cybern. Syst.

NeurIPS

Expand NeurIPS

2024

Title Venue Year Link
Are Your Models Still Fair? Fairness Attacks on Graph Neural Networks via Node Injections. NeurIPS 2024 Link
FEDMEKI: A Benchmark for Scaling Medical Foundation Models via Federated Knowledge Injection. NeurIPS 2024 Link
Latent Paraphrasing: Perturbation on Layers Improves Knowledge Injection in Language Models. NeurIPS 2024 Link

ICML

Expand ICML

2024

Title Venue Year Link
MH-pFLID: Model Heterogeneous personalized Federated Learning via Injection and Distillation for Medical Data Analysis. ICML 2024 Link

CVPR

Expand CVPR

2025

Title Venue Year Link
Hybrid-Level Instruction Injection for Video Token Compression in Multi-modal Large Language Models. CVPR 2025 Link
Implicit Bias Injection Attacks against Text-to-Image Diffusion Models. CVPR 2025 Link

2024

Title Venue Year Link
Style Injection in Diffusion: A Training-Free Approach for Adapting Large-Scale Diffusion Models for Style Transfer. CVPR 2024 Link

2022

Title Venue Year Link
Expanding Large Pre-trained Unimodal Models with Multimodal Information Injection for Image-Text Multimodal Classification. CVPR 2022 Link

AAAI

Expand AAAI

2025

Title Venue Year Link
AIA: Autoregression-Based Injection Attacks Against Text2SQL Models. AAAI 2025 Link
Assessing Vulnerabilities in State-of-the-Art Large Language Models Through Hex Injection (Student Abstract). AAAI 2025 Link
J&H: Evaluating the Robustness of Large Language Models Under Knowledge-Injection Attacks in Legal Domain. AAAI 2025 Link

2022

Title Venue Year Link
GALAXY: A Generative Pre-trained Model for Task-Oriented Dialog with Semi-supervised Learning and Explicit Policy Injection. AAAI 2022 Link

2006

Title Venue Year Link
Model-Based Collaborative Filtering as a Defense against Profile Injection Attacks. AAAI 2006 Link

AISTATS

Expand AISTATS

2023

Title Venue Year Link
Explicit Regularization in Overparametrized Models via Noise Injection. AISTATS 2023 Link

KDD

Expand KDD

2025

Title Venue Year Link
Benchmarking and Defending against Indirect Prompt Injection Attacks on Large Language Models. KDD 2025 Link
Generalizable Graph Prompt Learning Framework with Model-level Prompt Injection and Two-Stage Prompt Tuning. KDD 2025 Link

CCS

Expand CCS

2025

Title Venue Year Link
Cascading Adversarial Bias from Injection to Distillation in Language Models. CCS 2025 Link

ACL

Expand ACL

2025

Title Venue Year Link
SQL Injection Jailbreak: A Structural Disaster of Large Language Models. ACL 2025 Link
Structure-aware Domain Knowledge Injection for Large Language Models. ACL 2025 Link
Task Knowledge Injection via Interpolations and Reinstatement for Large Language Model Generalization. ACL 2025 Link
Tracr-Injection: Distilling Algorithms into Pre-trained Language Models. ACL 2025 Link

2024

Title Venue Year Link
InjecAgent: Benchmarking Indirect Prompt Injections in Tool-Integrated Large Language Model Agents. ACL 2024 Link

2023

Title Venue Year Link
KILM: Knowledge Injection into Encoder-Decoder Language Models. ACL 2023 Link
Plug-and-Play Knowledge Injection for Pre-trained Language Models. ACL 2023 Link
Retrieval-free Knowledge Injection through Multi-Document Traversal for Dialogue Models. ACL 2023 Link

NAACL-HLT

Expand NAACL-HLT

2024

Title Venue Year Link
Backdooring Instruction-Tuned Large Language Models with Virtual Prompt Injection. NAACL-HLT 2024 Link
Stealthy and Persistent Unalignment on Large Language Models via Backdoor Injections. NAACL-HLT 2024 Link

EMNLP

Expand EMNLP

2024

Title Venue Year Link
Evaluating the Instruction-Following Robustness of Large Language Models to Prompt Injection. EMNLP 2024 Link
FEDKIM: Adaptive Federated Knowledge Injection into Medical Foundation Models. EMNLP 2024 Link
Synthetic Knowledge Ingestion: Towards Knowledge Refinement and Injection for Enhancing Large Language Models. EMNLP 2024 Link
Training-free Deep Concept Injection Enables Language Models for Video Question Answering. EMNLP 2024 Link

COLING

Expand COLING

2022

Title Venue Year Link
Attribute Injection for Pretrained Language Models: A New Benchmark and an Efficient Method. COLING 2022 Link

2020

Title Venue Year Link
An Enhanced Knowledge Injection Model for Commonsense Generation. COLING 2020 Link

SIGIR

Expand SIGIR

2025

Title Venue Year Link
Enhancing Knowledge Injection in Large Language Models for Efficient and Trustworthy Responses. SIGIR 2025 Link

ICDM

Expand ICDM

2024

Title Venue Year Link
Goal-Guided Generative Prompt Injection Attack on Large Language Models. ICDM 2024 Link

2023

Title Venue Year Link
Review-Incorporated Model-Agnostic Profile Injection Attacks on Recommender Systems. ICDM 2023 Link

WACV

Expand WACV

2024

Title Venue Year Link
Training-free Content Injection using h-space in Diffusion Models. WACV 2024 Link

WWW

Expand WWW

2024

Title Venue Year Link
Message Injection Attack on Rumor Detection under the Black-Box Evasion Setting Using Large Language Model. WWW 2024 Link

SP

Expand SP

2023

Title Venue Year Link
Hakuin: Optimizing Blind SQL Injection with Probabilistic Language Models. SP 2023 Link

USENIX Security Symposium

Expand USENIX Security Symposium

2024

Title Venue Year Link
Yes, One-Bit-Flip Matters! Universal DNN Model Inference Depletion with Runtime Code Fault Injection. USENIX Security Symposium 2024 Link

2008

Title Venue Year Link
Automatic Generation of XSS and SQL Injection Attacks with Goal-Directed Model Checking. USENIX Security Symposium 2008 Link

ICSE

Expand ICSE

2021

Title Venue Year Link
DeepPayload: Black-box Backdoor Attack on Deep Learning Models through Neural Payload Injection. ICSE 2021 Link

CIKM

Expand CIKM

2024

Title Venue Year Link
XploitSQL: Advancing Adversarial SQL Injection Attack Generation with Language Models and Reinforcement Learning. CIKM 2024 Link

IEEE Trans. Inf. Forensics Secur.

Expand IEEE Trans. Inf. Forensics Secur.

2017

Title Venue Year Link
Modeling and Mitigating Impact of False Data Injection Attacks on Automatic Generation Control. IEEE Trans. Inf. Forensics Secur. 2017 Link

2016

Title Venue Year Link
Against Double Fault Attacks: Injection Effort Model, Space and Time Randomization Based Countermeasures for Reconfigurable Array Architecture. IEEE Trans. Inf. Forensics Secur. 2016 Link

ACM Trans. Priv. Secur.

Expand ACM Trans. Priv. Secur.

2025

Title Venue Year Link
Behavior Nets: Context-Aware Behavior Modeling for Code Injection-Based Windows Malware. ACM Trans. Priv. Secur. 2025 Link

Proc. VLDB Endow.

Expand Proc. VLDB Endow.

2024

Title Venue Year Link
From Zero to Hero: Detecting Leaked Data through Synthetic Data Injection and Model Querying. Proc. VLDB Endow. 2024 Link

IEEE Trans. Parallel Distributed Syst.

Expand IEEE Trans. Parallel Distributed Syst.

2014

Title Venue Year Link
On False Data-Injection Attacks against Power System State Estimation: Modeling and Countermeasures. IEEE Trans. Parallel Distributed Syst. 2014 Link

IEEE Trans. Comput. Aided Des. Integr. Circuits Syst.

Expand IEEE Trans. Comput. Aided Des. Integr. Circuits Syst.

2021

Title Venue Year Link
Modeling and Simulating Electromagnetic Fault Injection. IEEE Trans. Comput. Aided Des. Integr. Circuits Syst. 2021 Link

1999

Title Venue Year Link
Modeling digital substrate noise injection in mixed-signal IC's. IEEE Trans. Comput. Aided Des. Integr. Circuits Syst. 1999 Link

Expert Syst. Appl.

Expand Expert Syst. Appl.

2015

Title Venue Year Link
A principal component analysis model-based predictive controller for controlling part warpage in plastic injection molding. Expert Syst. Appl. 2015 Link

Neural Networks

Expand Neural Networks

2010

Title Venue Year Link
Fitting a stochastic spiking model to neuronal current injection data. Neural Networks 2010 Link

Neurocomputing

Expand Neurocomputing

2008

Title Venue Year Link
Enhanced feature selection models using gradient-based and point injection techniques. Neurocomputing 2008 Link

Neural Comput. Appl.

Expand Neural Comput. Appl.

2013

Title Venue Year Link
Modeling and simulation of injection control system on a four-stroke type diesel engine development platform using artificial neural networks. Neural Comput. Appl. 2013 Link

J. Artif. Intell. Res.

Expand J. Artif. Intell. Res.

2004

Title Venue Year Link
Dual Modelling of Permutation and Injection Problems. J. Artif. Intell. Res. 2004 Link

IEEE Trans. Syst. Man Cybern. Syst.

Expand IEEE Trans. Syst. Man Cybern. Syst.

2026

Title Venue Year Link
Stochastic Tube-Based Model Predictive Control for Cyber-Physical Systems Under False Data Injection Attacks With Bounded Probability. IEEE Trans. Syst. Man Cybern. Syst. 2026 Link