AI Threat Alert AI Threat Alert

PraisonAI

pip AI Agents
11
Total CVEs
4
Critical
pip
Ecosystem
Apr 8, 2026
Last CVE
100%
Patch Rate
1d
Avg Time to Patch

Known Vulnerabilities (11 total, page 1 of 1)

Severity CVE ID Summary CVSS Published
CRITICAL GHSA-2763-cj5r-c79m PraisonAI: RCE via shell injection in agent workflows 9.7 Apr 8, 2026 CRITICAL CVE-2026-39890 PraisonAI: YAML deserialization enables unauthenticated RCE 9.8 Apr 8, 2026 HIGH CVE-2026-39889 PraisonAI: unauth A2U stream leaks all agent activity 7.5 Apr 8, 2026 HIGH CVE-2026-39891 praisonai: SSTI enables RCE via agent instructions 8.8 Apr 8, 2026 HIGH CVE-2026-39307 PraisonAI: Zip Slip enables arbitrary file write / RCE 8.1 Apr 6, 2026 CRITICAL CVE-2026-39305 PraisonAI: path traversal enables arbitrary file write/RCE 9.0 Apr 6, 2026 HIGH CVE-2026-39306 PraisonAI: recipe path traversal allows arbitrary file write 7.3 Apr 6, 2026 HIGH CVE-2026-39308 PraisonAI: recipe registry path traversal file write 7.1 Apr 6, 2026 CRITICAL CVE-2026-35615 PraisonAI: path traversal exposes full filesystem via agent tools -- Apr 6, 2026 HIGH CVE-2026-34936 PraisonAI: SSRF via api_base steals cloud IAM credentials 7.7 Apr 1, 2026 HIGH CVE-2026-34955 PraisonAI: sandbox escape via shell=True blocklist bypass 8.8 Apr 1, 2026

Monitor PraisonAI in your stack

Get instant alerts when new vulnerabilities affect PraisonAI. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring