Services that employ large language models (LLMs) can be subject to prompt injection attacks, in which malicious external prompts induce unintended behaviors. In this paper, we constructed a dataset of prompt-injection attacks designed to extract sensitive data that had been previously provided to the models, and we conducted experiments against multiple LLMs to evaluate whether these prompts cause leakage of the secrets. The dataset included not only prompts written in English text but also prompts written in Japanese and prompts rendered as images. Our experimental results show that the highest attack success rate was observed for Llama 4 Maverick; notably, attacks using Japanese prompts rendered as images exhibited particularly high success rates.