2 matches found
CVE-2026-44334
PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py auto-import behind PRAISONAIALLOWLOCALTOOLS=true in two files toolresolver.py, api/call.py. A third import sink in praisonai/templates/tooloverride.py was missed and remains...
PT-2026-38304
Name of the Vulnerable Software and Affected Versions PraisonAI versions 4.5.139 through 4.6.31 Description A flaw exists in the multi-agent teams system where an import sink in praisonai/templates/tool override.py remains unguarded. This allows remote attackers to trigger arbitrary code executio...