2 matches found
EUVD-2026-21164
PraisonAIAgents: Arbitrary File Read via readskillfile Missing Workspace Boundary and Approval Gate...
PT-2026-31786
Name of the Vulnerable Software and Affected Versions PraisonAIAgents versions prior to 1.5.128 Description PraisonAIAgents is a multi-agent teams system. The read skill file function in skill tools.py allows reading arbitrary files from the filesystem due to an unrestricted skill path parameter...