Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

PraisonAI — Vulnerabilities & Security Advisories 70

All 70 CVE vulnerabilities found in PraisonAI, with AI-generated Chinese analysis, references, and POCs.

PraisonAI is an open-source intelligent agent framework that aggregates and analyzes security vulnerabilities associated with its software components. This page collects known weaknesses, including those related to insecure direct object references, broken access control, and security misconfigurations, covering data from major public vulnerability databases such as CVE and NVD. The information spans from initial discoveries through to recent patch releases, ensuring a comprehensive view of the threat landscape. Users can utilize this resource to track vendor advisories for PraisonAI, gaining insight into how the development team responds to identified risks. Additionally, visitors can explore specific weakness classes to understand the underlying technical flaws and their potential impact on system integrity. The page also allows users to look up a product’s vulnerability history, providing a chronological context for each reported issue. By reviewing these details, developers and security analysts can better assess the current security posture of their PraisonAI deployments. The data is organized to facilitate easy navigation, allowing stakeholders to filter by severity, component, or release version. This structured approach helps organizations prioritize remediation efforts based on the specific context of their infrastructure. Whether conducting a routine audit or responding to a specific incident, this aggregation serves as a centralized reference point for understanding the historical and current vulnerabilities linked to PraisonAI. The goal is to enhance transparency and support informed decision-making regarding security patches and updates.

Vendor: MervinPraison

CVE IDTitleCVSSSeverityPublished
CVE-2026-61447 PraisonAI before 1.6.78 Remote Code Execution via CodeAgent CWE-94 10.0 Critical2026-07-11
CVE-2026-61445 PraisonAI before 4.6.78 Arbitrary File Write and Command Execution CWE-22 9.9 Critical2026-07-11
CVE-2026-61442 PraisonAI Platform before 0.1.9 Authorization Bypass via PATCH CWE-862 7.1 High2026-07-11
CVE-2026-61439 PraisonAI before 4.6.78 Prompt Injection Defense Bypass CWE-1188 7.5 High2026-07-11
CVE-2026-61428 PraisonAI AgentMail before 4.6.78 Message Injection via Webhook CWE-290 7.3 High2026-07-11
CVE-2026-61429 PraisonAI before 1.6.78 SSRF via Crawl4AI Chromium backend CWE-918 8.5 High2026-07-11
CVE-2026-61426 PraisonAI before 1.7.3 Unauthenticated Agent Access via Insecure Defaults CWE-200 8.6 High2026-07-11
CVE-2026-60090 PraisonAI before 4.6.78 SQL/CQL Injection via vector dimension CWE-89 9.8 Critical2026-07-11
CVE-2026-60088 PraisonAI before 4.6.78 Path Traversal via Custom Commands CWE-22 5.5 Medium2026-07-11
CVE-2026-61444 PraisonAI before 4.6.78 Code Injection via f-string CWE-94 9.1 Critical2026-07-10
CVE-2026-61441 PraisonAI Platform before 0.1.9 Authorization Bypass via Dependencies CWE-862 6.5 Medium2026-07-10
CVE-2026-61437 PraisonAI before 1.6.78 Remote Code Execution via tools.py CWE-693 7.8 High2026-07-10
CVE-2026-61434 PraisonAI before 4.6.78 Allowlist Bypass via find -exec CWE-78 8.8 High2026-07-10
CVE-2026-61432 PraisonAI FastContext before 1.6.78 Path Traversal CWE-22 5.7 Medium2026-07-10
CVE-2026-61431 PraisonAI before 4.6.78 Path Traversal via ContextGatherer CWE-22 5.5 Medium2026-07-10
CVE-2026-60091 PraisonAI before 4.6.78 Unauthenticated SSRF via webhook_url CWE-918 7.2 High2026-07-10
CVE-2026-60089 PraisonAI before 1.6.78 Path Traversal via config.toml CWE-22 5.5 Medium2026-07-10
CVE-2026-60086 PraisonAI before 4.6.78 Prompt Injection Defense Bypass CWE-693 5.3 Medium2026-07-10
CVE-2026-58653 PraisonAI - Authorization Bypass via Unvalidated project_id in Issue Create/Update CWE-639 4.3 Medium2026-07-02
CVE-2026-56078 PraisonAI - Arbitrary File Read and Write via Path Traversal in MultiAgentMonitor CWE-22 8.8 High2026-06-18
CVE-2026-56077 PraisonAI - Information Disclosure via Shared MultiAgentLedger State CWE-668 6.5 Medium2026-06-18
CVE-2026-56076 PraisonAI - Cross-Origin Agent Execution via Hardcoded Wildcard CORS and Missing Authentication on AGUI Endpoint CWE-942 8.1 High2026-06-18
CVE-2026-56074 PraisonAI - Tool Approval Cache Bypass via Coarse-Grained Caching CWE-863 5.5 Medium2026-06-18
CVE-2026-56075 PraisonAI - Arbitrary Shell Command Execution via Hardcoded Approval Mode Override CWE-863 8.8 High2026-06-18
CVE-2026-44340 PraisonAI: Symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir` CWE-22 7.1AIHighAI2026-05-08
CVE-2026-44339 PraisonAI has unsafe tool resolution in `ToolExecutionMixin.execute_tool`: undeclared `__main__` callables execute CWE-470 8.6 High2026-05-08
CVE-2026-44338 PraisonAI ships and generates a legacy API server with authentication disabled by default, allowing unauthenticated workflow execution CWE-306 7.3 High2026-05-08
CVE-2026-44337 PraisonAI knowledge-store backends interpolate unvalidated collection names into SQL and CQL queries CWE-20 6.3 Medium2026-05-08
CVE-2026-44336 PraisonAI MCP `tools/call` path-traversal and RCE via Python `.pth` injection CWE-20 5.4AIMediumAI2026-05-08
CVE-2026-44335 SSRF bypass in PraisonAI CWE-918 9.1AICriticalAI2026-05-08

All 70 known CVE vulnerabilities affecting PraisonAI with full Chinese analysis, references, and POCs where available.