Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

427 matches found

ATTACKERKB
ATTACKERKBadded 2026/05/08 1:35 p.m.6 views

CVE-2026-44338

PraisonAI is a multi-agent teams system. From version 2.5.6 to before version 4.6.34, PraisonAI ships a legacy Flask API server with authentication disabled by default. When that server is used, any caller that can reach it can access /agents and trigger the configured agents.yaml workflow throug...

7.3CVSS5.8AI score0.19037EPSS
Exploits3References2Affected Software1
EUVD
EUVDadded 2026/05/08 1:33 p.m.6 views

EUVD-2026-28640

PraisonAI is a multi-agent teams system. From version 2.4.1 to before version 4.6.34, PraisonAI exposes optional SQL/CQL-backed knowledge-store implementations that build table and index identifiers from unvalidated name and collection arguments. Applications that pass untrusted collection names...

6.3CVSS5.8AI score0.00216EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2026/05/08 1:33 p.m.5 views

CVE-2026-44337 PraisonAI knowledge-store backends interpolate unvalidated collection names into SQL and CQL queries

PraisonAI is a multi-agent teams system. From version 2.4.1 to before version 4.6.34, PraisonAI exposes optional SQL/CQL-backed knowledge-store implementations that build table and index identifiers from unvalidated name and collection arguments. Applications that pass untrusted collection names...

6.3CVSS5.8AI score0.00216EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:33 p.m.3 views

CVE-2026-44337

PraisonAI is a multi-agent teams system. From version 2.4.1 to before version 4.6.34, PraisonAI exposes optional SQL/CQL-backed knowledge-store implementations that build table and index identifiers from unvalidated name and collection arguments. Applications that pass untrusted collection names...

6.3CVSS5.8AI score0.00216EPSS
Exploits1References2Affected Software1
Cvelist
Cvelistadded 2026/05/08 1:33 p.m.28 views

CVE-2026-44337 PraisonAI knowledge-store backends interpolate unvalidated collection names into SQL and CQL queries

PraisonAI is a multi-agent teams system. From version 2.4.1 to before version 4.6.34, PraisonAI exposes optional SQL/CQL-backed knowledge-store implementations that build table and index identifiers from unvalidated name and collection arguments. Applications that pass untrusted collection names...

6.3CVSS0.00216EPSS
Exploits1References1
CVE
CVEadded 2026/05/08 1:33 p.m.9 views

CVE-2026-44337

PraisionAI across versions 2.4.1–4.6.34 exposes optional SQL/CQL-backed knowledge-store backends that derive table and index identifiers from unvalidated collection names. This can enable SQL/CQL injection when applications pass untrusted collection names into these backends. The issue is fixed i...

6.3CVSS5.8AI score0.00216EPSS
Exploits1References1Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:32 p.m.5 views

CVE-2026-44336

PraisonAI is a multi-agent teams system. Prior to version 4.6.34, PraisonAI's MCP Model Context Protocol server praisonai mcp serve registers four file-handling tools by default — praisonai.rules.create, praisonai.rules.show, praisonai.rules.delete, and praisonai.workflow.show. Each accepts a pat...

9.4CVSS6.3AI score0.00492EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2026/05/08 1:32 p.m.25 views

CVE-2026-44336

PRAISIAI MCP server before 4.6.34 registers four file-handling tools (prasionai.rules.create, praisonai.rules.show, praisonai.rules.delete, praisonai.workflow.show) that accept paths via MCP tools/call arguments and concatenate them to ~/.praison/rules/ (workflow.show allows absolute paths) with ...

9.6CVSS6.3AI score0.00492EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2026/05/08 1:32 p.m.29 views

CVE-2026-44336 PraisonAI MCP `tools/call` path-traversal and RCE via Python `.pth` injection

PraisonAI is a multi-agent teams system. Prior to version 4.6.34, PraisonAI's MCP Model Context Protocol server praisonai mcp serve registers four file-handling tools by default — praisonai.rules.create, praisonai.rules.show, praisonai.rules.delete, and praisonai.workflow.show. Each accepts a pat...

9.4CVSS0.00492EPSS
Exploits1References1
CVE
CVEadded 2026/05/08 1:26 p.m.15 views

CVE-2026-44335

CVE-2026-44335 concerns PraisonAI prior to 1.6.32 with an SSRF bypass in the URL validation logic. The vulnerability arises from a discrepancy between Python urlparse() parsing and the requests library when handling certain URLs (e.g., http://127.0.0.1:[email protected]). urlparse() may extract a publ...

9.8CVSS5.7AI score0.00378EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2026/05/08 1:26 p.m.28 views

CVE-2026-44335 SSRF bypass in PraisonAI

PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. This issue has been patched in version 1.6.32...

8.7CVSS0.00378EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:26 p.m.5 views

CVE-2026-44335

PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. This issue has been patched in version 1.6.32...

8.7CVSS5.7AI score0.00378EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/08 1:26 p.m.6 views

CVE-2026-44335 SSRF bypass in PraisonAI

PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. This issue has been patched in version 1.6.32...

8.7CVSS5.7AI score0.00378EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/05/08 1:25 p.m.27 views

CVE-2026-44334 PraisonAI: Unauthenticated RCE via `tool_override.py`

PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py auto-import behind PRAISONAIALLOWLOCALTOOLS=true in two files toolresolver.py, api/call.py. A third import sink in praisonai/templates/tooloverride.py was missed and remains...

8.4CVSS0.00246EPSS
Exploits2References1
ATTACKERKB
ATTACKERKBadded 2026/05/08 1:25 p.m.4 views

CVE-2026-44334

PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py auto-import behind PRAISONAIALLOWLOCALTOOLS=true in two files toolresolver.py, api/call.py. A third import sink in praisonai/templates/tooloverride.py was missed and remains...

8.4CVSS5.8AI score0.00246EPSS
Exploits3References2Affected Software1
Vulnrichment
Vulnrichmentadded 2026/05/08 1:25 p.m.5 views

CVE-2026-44334 PraisonAI: Unauthenticated RCE via `tool_override.py`

PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py auto-import behind PRAISONAIALLOWLOCALTOOLS=true in two files toolresolver.py, api/call.py. A third import sink in praisonai/templates/tooloverride.py was missed and remains...

8.4CVSS5.9AI score0.00246EPSS
Exploits2References1
CVE
CVEadded 2026/05/08 1:25 p.m.8 views

CVE-2026-44334

PraisionAI contains an unauthenticated RCE path in templates/tool_override.py that was not gated after CVE-2026-40287 was fixed. From 4.5.139 up to 4.6.32, tools.py auto-imports were guarded in tool_resolver.py and api/call.py by PRAISONAI_ALLOW_LOCAL_TOOLS, but an additional import sink in prais...

8.4CVSS5.9AI score0.00246EPSS
Exploits2References1Affected Software1
Cvelist
Cvelistadded 2026/05/08 1:23 p.m.26 views

CVE-2026-41497 Incomplete fix for CVE-2026-34935: Command Injection in MervinPraison/PraisonAI

PraisonAI is a multi-agent teams system. Prior to version 4.6.9, the fix for PraisonAI's MCP command handling does not add a command allowlist or argument validation to parsemcpcommand, allowing arbitrary executables like bash, python, or /bin/sh with inline code execution flags to pass through t...

9.8CVSS0.00541EPSS
Exploits2References2
EUVD
EUVDadded 2026/05/08 1:23 p.m.7 views

EUVD-2026-28595

PraisonAI is a multi-agent teams system. Prior to version 4.6.9, the fix for PraisonAI's MCP command handling does not add a command allowlist or argument validation to parsemcpcommand, allowing arbitrary executables like bash, python, or /bin/sh with inline code execution flags to pass through t...

9.8CVSS6.3AI score0.00541EPSS
Exploits2References2
Vulnrichment
Vulnrichmentadded 2026/05/08 1:23 p.m.7 views

CVE-2026-41497 Incomplete fix for CVE-2026-34935: Command Injection in MervinPraison/PraisonAI

PraisonAI is a multi-agent teams system. Prior to version 4.6.9, the fix for PraisonAI's MCP command handling does not add a command allowlist or argument validation to parsemcpcommand, allowing arbitrary executables like bash, python, or /bin/sh with inline code execution flags to pass through t...

9.8CVSS6.3AI score0.00824EPSS
Exploits2References2
Rows per page
Query Builder