Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2026/04/09 10:16 p.m.1 views

CVE-2026-40111

PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, he memory hooks executor in praisonaiagents passes a user-controlled command string directly to subprocess.run with shell=True at src/praisonai-agents/praisonaiagents/memory/hooks.py. No sanitization is performed and shell...

9.3CVSS0.00035EPSS
Exploits1References1
Cvelist
Cvelistadded 2026/04/09 9:14 p.m.16 views

CVE-2026-40111 PraisonAIAgents has an OS Command Injection via shell=True in Memory Hooks Executor (memory/hooks.py)

PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, he memory hooks executor in praisonaiagents passes a user-controlled command string directly to subprocess.run with shell=True at src/praisonai-agents/praisonaiagents/memory/hooks.py. No sanitization is performed and shell...

9.3CVSS0.00035EPSS
Exploits1References1
ATTACKERKB
ATTACKERKBadded 2026/04/09 9:14 p.m.0 views

CVE-2026-40111

PraisonAIAgents is a multi-agent teams system. Prior to 1.5.128, he memory hooks executor in praisonaiagents passes a user-controlled command string directly to subprocess.run with shell=True at src/praisonai-agents/praisonaiagents/memory/hooks.py. No sanitization is performed and shell...

9.3CVSS6AI score0.00035EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologiesadded 2026/04/09 12:0 a.m.1 views

PT-2026-31780

Name of the Vulnerable Software and Affected Versions PraisonAIAgents versions prior to 1.5.128 Description PraisonAIAgents is a multi-agent teams system. The memory hooks executor in PraisonAIAgents passes a user-controlled command string directly to subprocess.run with shell=True at...

9.3CVSS5.8AI score0.00035EPSS
Exploits1References5
OpenVAS
OpenVASadded 2024/03/08 12:0 a.m.10 views

Fedora: Security Advisory for jakarta-interceptors (FEDORA-2024-129d8ca6fc)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS9.2AI score0.46427EPSS
Exploits3References2
Fedora
Fedoraadded 2024/03/07 10:33 p.m.18 views

[SECURITY] Fedora 40 Update: jakarta-interceptors-2.0.0-12.fc40

Jakarta Interceptors defines a means of interposing on business method invocations and specific events=EF=BF=BD=EF=BF=BD=EF=BF=BDsuch as lifecycle e vents and timeout events=EF=BF=BD=EF=BF=BD=EF=BF=BDthat occur on instances of Jakarta EE compon ents and other managed classes...

8.8CVSS9.1AI score0.46427EPSS
Exploits3
Veracode
Veracodeadded 2020/12/31 5:3 p.m.25 views

Information Disclosure

xen is vulnerable to information disclosure. The vulnerability exists as a guest administrator can observe non-sensitive domain and device lifecycle events relating to other guests...

2.3CVSS1.5AI score0.00062EPSS
Exploits0References7Affected Software1
Prion
Prionadded 2020/12/15 6:15 p.m.24 views

Design/Logic Flaw

An issue was discovered in Xen through 4.14.x. Neither xenstore implementation does any permission checks when reporting a xenstore watch event. A guest administrator can watch the root xenstored node, which will cause notifications for every created, modified, and deleted key. A guest...

2.1CVSS4.5AI score0.00062EPSS
Exploits0References4Affected Software3
Rows per page
Query Builder