Known Vulnerabilities for products from Praison
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Praison".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-44340 json | PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_extractall helper that all recipe pull, recipe pu... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44339 json | PraisonAI is a multi-agent teams system. Prior to praisonai version 4.6.37 and praisonaiagents version 1.6.37, praisonaiagent... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44338 json | PraisonAI is a multi-agent teams system. From version 2.5.6 to before version 4.6.34, PraisonAI ships a legacy Flask API serv... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44337 json | PraisonAI is a multi-agent teams system. From version 2.4.1 to before version 4.6.34, PraisonAI exposes optional SQL/CQL-back... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44336 json | PraisonAI is a multi-agent teams system. Prior to version 4.6.34, PraisonAI's MCP (Model Context Protocol) server (praisonai ... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44335 json | PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI has a logical flaw that... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-44334 json | PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py a... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-41497 json | PraisonAI is a multi-agent teams system. Prior to version 4.6.9, the fix for PraisonAI's MCP command handling does not add a ... | Not Provided | 2026-05-08 | 2026-05-08 |
| CVE-2026-41496 json | PraisonAI is a multi-agent teams system. Prior to praisonai version 4.6.9 and praisonaiagents version 1.6.9, the fix for CVE-... | Not Provided | 2026-05-08 | 2026-05-09 |
| CVE-2026-40315 json | PraisonAI is a multi-agent teams system. Prior to 4.5.133, there is an SQL identifier injection vulnerability in SQLiteConver... | Not Provided | 2026-04-14 | 2026-04-20 |
| CVE-2026-40313 json | PraisonAI is a multi-agent teams system. In versions 4.5.139 and below, the GitHub Actions workflows are vulnerable to ArtiPA... | Not Provided | 2026-04-14 | 2026-04-20 |
| CVE-2026-40289 json | PraisonAI is a multi-agent teams system. In versions below 4.5.139 of PraisonAI and 1.5.140 of praisonaiagents, the browser b... | Not Provided | 2026-04-14 | 2026-04-20 |
| CVE-2026-40288 json | PraisonAI is a multi-agent teams system. In versions below 4.5.139 of PraisonAI and 1.5.140 of praisonaiagents, the workflow ... | Not Provided | 2026-04-14 | 2026-04-20 |
| CVE-2026-40287 json | PraisonAI is a multi-agent teams system. Versions 4.5.138 and below are vulnerable to arbitrary code execution through automa... | Not Provided | 2026-04-14 | 2026-04-20 |
| CVE-2026-40160 json | PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, web_crawl's httpx fallback path passes user-supplied URLs di... | Not Provided | 2026-04-10 | 2026-04-20 |
| CVE-2026-40159 json | PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI’s MCP (Model Context Protocol) integration allows spaw... | Not Provided | 2026-04-10 | 2026-04-20 |
| CVE-2026-40158 json | PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI's AST-based Python sandbox can be bypassed using type.__... | Not Provided | 2026-04-10 | 2026-04-20 |
| CVE-2026-40157 json | PraisonAI is a multi-agent teams system. Prior to 4.5.128, cmd_unpack in the recipe CLI extracts .praison tar archives using ... | Not Provided | 2026-04-10 | 2026-04-24 |
| CVE-2026-40156 json | PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI automatically loads a file named tools.py from the curre... | Not Provided | 2026-04-10 | 2026-04-20 |
| CVE-2026-40154 json | PraisonAI is a multi-agent teams system. Prior to 4.5.128, PraisonAI treats remotely fetched template files as trusted execut... | Not Provided | 2026-04-09 | 2026-04-15 |