Lucene search
+L

15 matches found

redhatcve
redhatcve
added 2026/06/05 7:20 p.m.12 views

CVE-2026-41496

PraisonAI is a multi-agent teams system. Prior to praisonai version 4.6.9 and praisonaiagents version 1.6.9, the fix for CVE-2026-40315 added input validation to SQLiteConversationStore only. Nine sibling backends — MySQL, PostgreSQL, async SQLite/MySQL/PostgreSQL, Turso, SingleStore, Supabase,...

8.1CVSS5.4AI score0.00347EPSS
Exploits2References1
osv
osv
added 2026/05/08 1:19 p.m.2 views

CVE-2026-41496 PraisonAI: SQL Injection via unvalidated `table_prefix` in 9 conversation store backends (incomplete fix for CVE-2026-40315)

PraisonAI is a multi-agent teams system. Prior to praisonai version 4.6.9 and praisonaiagents version 1.6.9, the fix for CVE-2026-40315 added input validation to SQLiteConversationStore only. Nine sibling backends — MySQL, PostgreSQL, async SQLite/MySQL/PostgreSQL, Turso, SingleStore, Supabase,...

8.1CVSS5.9AI score0.00347EPSS
Exploits2References3
snyk
snyk
added 2026/04/17 10:24 p.m.5 views

SQL Injection

Overview PraisonAI is a PraisonAI is an AI Agents Framework with Self Reflection. PraisonAI application combines PraisonAI Agents, AutoGen, and CrewAI into a low-code solution for building and managing multi-agent LLM systems, focusing on simplicity, customisation, and efficient human-agent...

8.6CVSS6.4AI score0.00347EPSS
Exploits2References2
snyk
snyk
added 2026/04/17 10:24 p.m.6 views

SQL Injection

Overview praisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents Affected versions of this package are vulnerable to SQL Injection in the handling of the tableprefix and schema parameters in multiple conversation store backends, where these values are...

8.6CVSS6.4AI score0.00347EPSS
Exploits2References2
nvd
nvd
added 2022/04/15 6:15 p.m.23 views

CVE-2022-27257

A PHP Local File Inclusion vulneraility in the default Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

7.5CVSS0.01235EPSS
Exploits0References2
attackerkb
attackerkb
added 2022/04/15 6:15 p.m.3 views

CVE-2022-27257

A PHP Local File Inclusion vulneraility in the default Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

7.5CVSS6AI score0.01235EPSS
Exploits0References3
osv
osv
added 2022/04/15 6:15 p.m.5 views

CVE-2022-27257

A PHP Local File Inclusion vulneraility in the default Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

7.5CVSS7.3AI score0.01235EPSS
Exploits0References2
prion
prion
added 2022/04/15 6:15 p.m.23 views

Design/Logic Flaw

A PHP Local File Inclusion vulneraility in the default Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

5CVSS7.7AI score0.01235EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2022/04/15 5:54 p.m.34 views

CVE-2022-27257

A PHP Local File Inclusion vulneraility in the default Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

7.8AI score0.01235EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2022/04/15 12:0 a.m.6 views

PT-2022-18334 · Hubzilla · Hubzilla

Name of the Vulnerable Software and Affected Versions: Hubzilla versions prior to 7.2 Description: A PHP Local File Inclusion issue in the default Redbasic theme allows remote attackers to include arbitrary php files via the schema parameter. Recommendations: For versions prior to 7.2, update to...

7.5CVSS7.6AI score0.01235EPSS
Exploits0References3
osv
osv
added 2022/04/13 2:15 p.m.6 views

CVE-2022-27256

A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

6.1CVSS5.9AI score0.01465EPSS
Exploits1References3
nvd
nvd
added 2022/04/13 2:15 p.m.20 views

CVE-2022-27256

A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

6.1CVSS0.01465EPSS
Exploits1References3
attackerkb
attackerkb
added 2022/04/13 2:15 p.m.4 views

CVE-2022-27256

A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

6.1CVSS6AI score0.01465EPSS
Exploits1References4
prion
prion
added 2022/04/13 2:15 p.m.21 views

Arbitrary file deletion

A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

5.8CVSS6.4AI score0.01465EPSS
Exploits1References3Affected Software1
cvelist
cvelist
added 2022/04/13 1:35 p.m.30 views

CVE-2022-27256

A PHP Local File inclusion vulnerability in the Redbasic theme for Hubzilla before version 7.2 allows remote attackers to include arbitrary php files via the schema parameter...

6.6AI score0.01465EPSS
Exploits1References3
Rows per page
Query Builder