PraisonAI Vulnerabilities

pip AI Agents

AI Threat Alert tracks 114 known vulnerabilities in PraisonAI, 32 rated critical — an AI/ML ai agents in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
114
Total CVEs
32
Critical
pip
Ecosystem
Jul 2, 2026
Last CVE
82%
Patch Rate
0d
Avg Time to Patch

Known Vulnerabilities (114 total, page 1 of 5)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2026-58653 PraisonAI: IDOR cross-tenant data pollution 4.3 Jul 2, 2026 HIGH CVE-2026-56076 PraisonAI: CORS bypass enables arbitrary agent execution 8.1 Jun 18, 2026 MEDIUM CVE-2026-56077 PraisonAI: agent ID collision leaks system prompts 6.5 Jun 18, 2026 HIGH CVE-2026-56078 PraisonAI: path traversal → arbitrary file read/write/RCE 8.8 Jun 18, 2026 MEDIUM CVE-2026-56074 PraisonAI: tool approval bypass enables credential theft 5.5 Jun 18, 2026 HIGH CVE-2026-56075 PraisonAI: RCE via hardcoded approval_mode bypass 8.8 Jun 18, 2026 HIGH GHSA-4qq2-2j2x-x62c praisonai: MCP auth bypass exposes agent tools 8.2 Jun 18, 2026 HIGH GHSA-gqmf-56h7-rrpf praisonai: network-isolated sandbox bypass exposes host network 7.6 Jun 18, 2026 CRITICAL GHSA-vmmj-pfw7-fjwp praisonai: sandbox escape gives RCE via codeMode tool 9.9 Jun 18, 2026 HIGH GHSA-vjv9-7m7j-h833 praisonai (npm): allowlist bypass enables RCE 8.8 Jun 18, 2026 CRITICAL GHSA-p69m-4f92-2v84 praisonai: sandbox escape in codeMode → full host RCE 9.8 Jun 18, 2026 CRITICAL GHSA-9752-mhqh-h34f praisonai npm: AgentOS missing auth enables agent abuse 9.4 Jun 18, 2026 CRITICAL GHSA-j4f3-55x4-r6q2 praisonai: MCP HTTP server unauthenticated tool invocation 9.8 Jun 18, 2026 HIGH GHSA-h2w2-v7j6-xqm4 praisonai: tool approval bypass executes denied actions 8.8 Jun 18, 2026 HIGH GHSA-5jv7-2mjm-h6qj praisonai: shell allowlist bypass enables OS command injection 8.8 Jun 18, 2026 HIGH GHSA-8579-rgg5-ph2m praisonai: Discord approval bypass executes agent tools 8.8 Jun 18, 2026 HIGH GHSA-22cj-m4wf-fv2c PraisonAI: path traversal in agent tools exposes credentials 7.5 Jun 18, 2026 HIGH GHSA-vmf9-xx9w-86wx PraisonAI: DNS rebinding exposes MCP agent tools 8.3 Jun 18, 2026 HIGH GHSA-5qw8-f2g9-ff29 PraisonAI: auth bypass exposes recipe API to unauthenticated callers 8.2 Jun 18, 2026 HIGH GHSA-qvpf-j64c-jmhr PraisonAI: auth bypass via Slack app_mention handler 8.3 Jun 18, 2026 HIGH GHSA-j7qx-p75m-wp7g PraisonAI: path traversal exposes arbitrary host files 7.5 Jun 18, 2026 HIGH GHSA-fc26-m9pf-v56q PraisonAI LinearBot: webhook auth bypass enables agent exec 8.6 Jun 18, 2026 HIGH GHSA-63v4-w882-g4x2 PraisonAI: XSS bypasses human-in-the-loop tool approval 8.8 Jun 18, 2026 HIGH GHSA-v847-hxxw-3pxg PraisonAI: streaming bypass enables dangerous tool execution 7.8 Jun 18, 2026 HIGH GHSA-w6h2-fr4q-xvxv PraisonAI: file tool shell injection enables RCE 8.8 Jun 18, 2026

Showing 1–25 of 114

Frequently asked questions

What is PraisonAI?

PraisonAI is an AI/ML ai agents tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does PraisonAI have?

PraisonAI has 114 known CVEs, 32 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is PraisonAI distributed in?

PraisonAI is distributed via the pip ecosystem and categorized as ai agents.

Where does the PraisonAI vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of PraisonAI?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor PraisonAI in your stack

Get instant alerts when new vulnerabilities affect PraisonAI. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring