praisonaiagents vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
GHSA-4PCV-MG8V-VRGFHighpraisonaiagents: PraisonAI: Server-Side Request Forgery (SSRF) in SearxNG / search_web tools via attacker-controlled…GHSA-C969-5X3P-VQ3VHighpraisonaiagents: PraisonAI: IMAP Command Injection via Unsanitized Email Search ParametersGHSA-X8CV-XMQ7-P8XPCriticalpraisonaiagents: PraisonAI AgentTeam.launch exposes unauthenticated remote agent listing and invocation endpointsGHSA-2RCG-MM5H-XCHXHighpraisonaiagents: PraisonAI: Arbitrary File Read via `@file:` Mention Path TraversalGHSA-VXGJ-XG5C-P4H7Highpraisonaiagents: praisonaiagents: SSRF guard validates literal IPs only and never resolves DNSGHSA-4869-X4PR-Q22XCriticalpraisonai: PraisonAI: Unauthenticated RCE via Jobs API + Approval Bypass GHSA-X227-PF99-VFFGCriticalpraisonaiagents: PraisonAI: MCP SSE transport binds 0.0.0.0 with no authentication and no Origin validation; bundled…GHSA-PV2J-RGHR-V5R9Mediumpraisonaiagents: PraisonAI: execute_code sandbox bypass: str.format C-level attribute access reads every blocklisted…GHSA-6H9P-93HQ-Q7H6Mediumpraisonaiagents: PraisonAI: SpiderTools redirect-target SSRF protection bypassGHSA-VMF9-XX9W-86WXHighpraisonaiagents: PraisonAI ToolsMCPServer legacy SSE transport accepts attacker Host/Origin and exposes registered…GHSA-35W5-PCW4-JX94Mediumpraisonaiagents: PraisonAI: Unauthenticated Event Injection via SSE `/publish` EndpointCVE-2026-47392Criticalpraisonaiagents: PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code`…CVE-2026-47395Mediumpraisonaiagents: PraisonAI CLI automatically resolves @url mentions in prompt text and can read loopback URLs into…CVE-2026-47390Mediumpraisonaiagents: PraisonAI spider_tools SSRF protection bypass via alternate loopback host encodingsCVE-2026-44339Highpraisonaiagents: PraisonAI has unsafe tool resolution in `ToolExecutionMixin.execute_tool`: undeclared `__main__`…CVE-2026-44335Highpraisonaiagents: PraisonAI has an SSRF bypassCVE-2026-41496Highpraisonai: PraisonAI: SQL Injection via unvalidated `table_prefix` in 9 conversation store backends…CVE-2026-40289Criticalpraisonaiagents: PraisonAI Browser Server allows unauthenticated WebSocket clients to hijack connected extension…CVE-2026-40288Criticalpraisonaiagents: PraisonAI has critical RCE via `type: job` workflow YAMLCVE-2026-40287Highpraisonaiagents: PraisonAI Vulnerable to RCE via Automatic tools.py ImportCVE-2026-56074Mediumpraisonaiagents: PraisonAI: Coarse-Grained Tool Approval Cache Bypasses Per-Invocation Consent for Shell CommandsCVE-2026-40160Highpraisonaiagents: PraisonAIAgents: SSRF via unvalidated URL in `web_crawl` httpx fallbackGHSA-X462-JJPC-Q4Q4Highpraisonaiagents: PraisonAI: Cross-Origin Agent Execution via Hardcoded Wildcard CORS and Missing Authentication on…CVE-2026-40152Mediumpraisonaiagents: PraisonAIAgents: Path Traversal via Unvalidated Glob Pattern in list_files Bypasses Workspace…CVE-2026-40153Highpraisonaiagents: PraisonAIAgents: Environment Variable Secret Exfiltration via os.path.expandvars() Bypassing…

Stop the waste.
Protect your environment with Kodem.