cbcvebase.

Praison Praisonai vulnerabilities

43 known vulnerabilities affecting praison/praisonai.

Total CVEs
43
CISA KEV
0
Public exploits
2
Exploited in wild
1
Severity breakdown
CRITICAL17HIGH21MEDIUM5

Vulnerabilities

Page 3 of 3
CVE-2026-40148P4MEDIUMCVSS 6.5fixed in 4.5.1282026-04-09
CVE-2026-40148 [MEDIUM] CWE-409 CVE-2026-40148: PraisonAI is a multi-agent teams system. Prior to 4.5.128, the _safe_extractall() function in Praiso PraisonAI is a multi-agent teams system. Prior to 4.5.128, the _safe_extractall() function in PraisonAI's recipe registry validates archive members against path traversal attacks but performs no checks on individual member sizes, cumulative extracted size, or member count before calling tar.extractall(). An attacker can publish a malicious recipe bu
nvd
CVE-2026-40112P4MEDIUMCVSS 6.1fixed in 4.5.1282026-04-09
CVE-2026-40112 [MEDIUM] CWE-79 CVE-2026-40112: PraisonAI is a multi-agent teams system. Prior to 4.5.128, the Flask API endpoint in src/praisonai/a PraisonAI is a multi-agent teams system. Prior to 4.5.128, the Flask API endpoint in src/praisonai/api.py renders agent output as HTML without effective sanitization. The _sanitize_html function relies on the nh3 library, which is not listed as a required or optional dependency in pyproject.toml. When nh3 is absent (the default installation), the san
nvd
CVE-2026-40159P4MEDIUMCVSS 5.5fixed in 4.5.1282026-04-10
CVE-2026-40159 [MEDIUM] CWE-200 CVE-2026-40159: PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI’s MCP (Model Context Protocol) PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI’s MCP (Model Context Protocol) integration allows spawning background servers via stdio using user-supplied command strings (e.g., MCP("npx -y @smithery/cli ...")). These commands are executed through Python’s subprocess module. By default, the implementation forwards the entire par
nvd