PyPI / praisonai

PraisonAI Vulnerable to OS Command Injection

수정: 2026. 4. 10.

PraisonAI Vulnerable to Implicit Execution of Arbitrary Code via Automatic `tools.py` Loading

수정: 2026. 4. 10.

PraisonAI has Unrestricted Upload Size in WSGI Recipe Registry Server that Enables Memory Exhaustion DoS

수정: 2026. 4. 10.

PraisonAI Vulnerable to Remote Code Execution via YAML Deserialization in Agent Definition Loading

수정: 2026. 4. 9.

PraisonAI knowledge-store backends interpolate unvalidated collection names into SQL and CQL queries

수정: 2026. 5. 11.

PraisonAI Vulnerable to Code Injection and Protection Mechanism Failure

수정: 2026. 4. 10.

PraisonAI vulnerable to sandbox escape via `print.__self__` builtins module leak in `execute_code` (subprocess mode)

수정: 2026. 5. 29.

PraisonAI Has Arbitrary File Write (Zip Slip) in Templates Extraction

수정: 2026. 4. 7.

PraisonAI recipe registry pull path traversal writes files outside the chosen output directory

수정: 2026. 4. 7.

PraisonAI: Unauthenticated Allow-List Manipulation Bypasses Agent Tool Approval Safety Controls

수정: 2026. 4. 10.

PraisonAI spider_tools SSRF protection bypass via alternate loopback host encodings

수정: 2026. 5. 29.

PraisonAI CLI automatically resolves @url mentions in prompt text and can read loopback URLs into model context

수정: 2026. 5. 29.

PraisonAI Has Path Traversal in FileTools

수정: 2026. 4. 7.

PraisonAI ships and generates a legacy API server with authentication disabled by default, allowing unauthenticated workflow execution

수정: 2026. 5. 11.

PraisonAI: Arbitrary code execution via unguarded `spec.loader.exec_module` in `agents_generator.py` - sibling of CVE-2026-44334

수정: 2026. 5. 29.

PraisonAI `deploy --type api` emits a Flask server with authentication disabled by default

수정: 2026. 5. 29.

PraisonAI call server exposes unauthenticated agent listing, invocation, and deletion when CALL_SERVER_TOKEN is unset

수정: 2026. 5. 29.

PraisonAI Vulnerable to Server-Side Request Forgery via Unvalidated webhook_url in Jobs API

수정: 2026. 4. 10.

PraisonAI Has ReDoS via Unvalidated User-Controlled Regex in MCPToolIndex.search_tools()

수정: 2026. 4. 6.

PraisonAI Browser Server allows unauthenticated WebSocket clients to hijack connected extension sessions

수정: 2026. 4. 14.

PraisonAI Has Authentication Bypass via OAuthManager.validate_token()

수정: 2026. 4. 6.

PraisonAI vulnerable to arbitrary file write via path traversal in `praisonai recipe unpack`

수정: 2026. 4. 10.

PraisonAI Has Second-Order SQL Injection in `get_all_user_threads`

수정: 2026. 4. 6.

PraisonAI vulnerable to unauthenticated arbitrary file read via MCP workflow.show, workflow.validate, deploy.validate

수정: 2026. 5. 29.

PraisonAI: OS Command Injection in MCPHandler.parse_mcp_command()

수정: 2026. 4. 6.

PraisonAI MCP `tools/call` path-traversal => RCE via Python `.pth` injection

수정: 2026. 5. 11.

PraisonAI's symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir`

수정: 2026. 5. 11.

PraisonAI has an incomplete fix for CVE-2026-34935 - OS Command Injection

수정: 2026. 5. 12.

PraisonAI Vulnerable to Stored XSS via Unsanitized Agent Output in HTML Rendering (nh3 Not a Required Dependency)

수정: 2026. 4. 10.

PraisonAI Has Missing Authentication in WebSocket Gateway

수정: 2026. 4. 6.

PraisonAI Has Unauthenticated SSE Event Stream that Exposes All Agent Activity in A2U Server

수정: 2026. 4. 9.

PraisonAI Vulnerable to Decompression Bomb DoS via Recipe Bundle Extraction Without Size Limits

수정: 2026. 4. 10.

PraisonAI Vulnerable to Argument Injection into Cloud Run Environment Variables via Unsanitized Comma in gcloud --set-env-vars

수정: 2026. 4. 10.

PraisonAI Vulnerable to RCE via Automatic tools.py Import

수정: 2026. 4. 14.

PraisonAI has unsafe tool resolution in `ToolExecutionMixin.execute_tool`: undeclared `__main__` callables execute

수정: 2026. 5. 11.

PraisonAI has an Arbitrary File Write in Python API

수정: 2026. 5. 29.

PraisonAI has Template Injection in Agent Tool Definitions

수정: 2026. 4. 9.

PraisonAI Vulnerable to Arbitrary File Write / Path Traversal in Action Orchestrator

수정: 2026. 4. 7.

PraisonAI Vulnerable to Sensitive Environment Variable Exposure via Untrusted MCP Subprocess Execution

수정: 2026. 4. 10.

PraisonAI: Unauthenticated Information Disclosure of Agent Instructions via /api/agents in AgentOS

수정: 2026. 4. 10.

PraisonAI Vulnerable Untrusted Remote Template Code Execution

수정: 2026. 4. 10.

PraisonAI: Unauthenticated WebSocket Endpoint Proxies to Paid OpenAI Realtime API Without Rate Limits

수정: 2026. 4. 10.

PraisonAI: Hardcoded `approval_mode="auto"` in Chainlit UI Overrides Administrator Configuration, Enabling Unapproved Shell Command Execution

수정: 2026. 4. 10.

PraisonAI Has Sandbox Escape via shell=True and Bypassable Blocklist in SubprocessSandbox

수정: 2026. 4. 6.

PraisonAI recipe registry publish path traversal allows out-of-root file write

수정: 2026. 4. 7.

PraisonAI: SQL Injection via unvalidated `table_prefix` in 9 conversation store backends (incomplete fix for CVE-2026-40315)

수정: 2026. 5. 12.

PraisonAI has critical RCE via `type: job` workflow YAML

수정: 2026. 4. 14.

PraisonAI's unauthenticated A2A official example can reach real LLM-driven `eval()` tool execution

수정: 2026. 5. 29.

PraisonAI: SSRF via Unvalidated api_base in passthrough() Fallback

수정: 2026. 4. 6.

PraisonAI: SQLiteConversationStore didn't validate table_prefix when constructing SQL queries

수정: 2026. 4. 14.

PraisonAI has unauthenticated RCE via `tool_override.py` (CVE-2026-40287 patch bypass)

수정: 2026. 5. 12.