PraisonAI Vulnerabilities

pip AI Agents

AI Threat Alert tracks 114 known vulnerabilities in PraisonAI, 32 rated critical — an AI/ML ai agents in the pip ecosystem. Each CVE includes CVSS severity, EPSS exploit probability, patch status, and CISO-grade analysis.

Data sources
114
Total CVEs
32
Critical
pip
Ecosystem
Jul 2, 2026
Last CVE
82%
Patch Rate
0d
Avg Time to Patch

Known Vulnerabilities (114 total, page 3 of 5)

Severity CVE ID Summary CVSS Published
MEDIUM CVE-2026-47411 PraisonAI: auth bypass allows workspace settings injection 6.5 Jun 1, 2026 CRITICAL CVE-2026-47413 praisonai-platform: member can escalate to workspace owner 9.6 Jun 1, 2026 HIGH CVE-2026-47415 praisonai-platform: IDOR exposes cross-workspace tenant data 8.3 Jun 1, 2026 HIGH CVE-2026-47412 praisonai-platform: member can wipe entire workspace 8.1 Jun 1, 2026 HIGH CVE-2026-47398 PraisonAI: RCE via ungated exec_module in agent config 8.1 May 29, 2026 MEDIUM CVE-2026-47390 PraisonAI: SSRF bypass via loopback alias encodings 5.5 May 29, 2026 CRITICAL CVE-2026-47396 PraisonAI: fail-open auth exposes remote agent control API 9.8 May 29, 2026 CRITICAL CVE-2026-47393 PraisonAI: auth bypass in deployed API exposes LLM + tools 9.8 May 29, 2026 MEDIUM CVE-2026-47395 PraisonAI: SSRF via @url mention exposes localhost services 5.5 May 29, 2026 CRITICAL CVE-2026-47392 praisonaiagents: RCE via Python sandbox bypass 9.9 May 29, 2026 HIGH CVE-2026-47394 PraisonAI: MCP path traversal exfiltrates host credentials -- May 29, 2026 CRITICAL CVE-2026-47391 PraisonAI: Unauth RCE via A2A eval injection 9.8 May 29, 2026 HIGH CVE-2026-47397 PraisonAI: arbitrary file write via hidden webpage metadata -- May 29, 2026 HIGH CVE-2026-48169 praisonai-platform: IDOR allows full workspace takeover 8.8 May 29, 2026 MEDIUM CVE-2026-47408 praisonai-platform: IDOR exposes cross-tenant activity logs 6.5 May 29, 2026 CRITICAL CVE-2026-47407 praisonai-platform: IDOR enables cross-tenant agent hijack -- May 29, 2026 HIGH CVE-2026-47399 praisonai-platform: IDOR breaks workspace tenant isolation 8.8 May 29, 2026 HIGH CVE-2026-47405 PraisonAI Platform: member self-promotes to workspace owner 8.8 May 29, 2026 CRITICAL CVE-2026-47410 praisonai-platform: hardcoded JWT → full account takeover 9.8 May 29, 2026 HIGH CVE-2026-47406 praisonai-platform: IDOR enables cross-workspace data poisoning 8.1 May 29, 2026 HIGH CVE-2026-47414 praisonai-platform: IDOR cross-workspace label tampering 7.6 May 29, 2026 HIGH CVE-2026-47409 praisonai-platform: auth bypass enables owner lockout 8.1 May 29, 2026 CRITICAL CVE-2026-47416 praisonai-platform: member-to-owner privilege escalation 9.6 May 29, 2026 HIGH CVE-2026-44338 PraisonAI: unauthenticated API triggers agent workflows 7.3 May 11, 2026 MEDIUM CVE-2026-44337 PraisonAI: SQL/CQL injection in knowledge-store backends 6.3 May 11, 2026

Showing 51–75 of 114

Frequently asked questions

What is PraisonAI?

PraisonAI is an AI/ML ai agents tracked by AI Threat Alert for security vulnerabilities in the pip ecosystem.

How many known vulnerabilities does PraisonAI have?

PraisonAI has 114 known CVEs, 32 of them critical, tracked from NVD and GitHub Advisory.

Which ecosystem is PraisonAI distributed in?

PraisonAI is distributed via the pip ecosystem and categorized as ai agents.

Where does the PraisonAI vulnerability data come from?

Vulnerability data is sourced from NVD and GitHub Advisory, enriched with CVSS, EPSS, exploit signals, and patch status for each CVE.

How do I assess the risk of PraisonAI?

Review each CVE below — every entry shows CVSS severity, EPSS exploit probability, exploitation signals, and whether a patched version is available.

Monitor PraisonAI in your stack

Get instant alerts when new vulnerabilities affect PraisonAI. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring