|
841
|
7.3 |
HIGH
Network
|
-
|
-
|
PraisonAI is a multi-agent teams system. From version 2.5.6 to before version 4.6.34, PraisonAI ships a legacy Flask API server with authentication disabled by default. When that server is used, any …
|
CWE-306
CWE-668
CWE-1188
Missing Authentication for Critical Function
Exposure of Resource to Wrong Sphere
Insecure Default Initialization of Resource
|
CVE-2026-44338
|
2026-05-9 00:53 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
842
|
8.4 |
HIGH
Local
|
-
|
-
|
PraisonAI is a multi-agent teams system. From version 4.5.139 to before version 4.6.32, CVE-2026-40287's fix gated tools.py auto-import behind PRAISONAI_ALLOW_LOCAL_TOOLS=true in two files (tool_reso…
|
CWE-94
Code Injection
|
CVE-2026-44334
|
2026-05-9 00:53 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
843
|
- |
|
-
|
-
|
PraisonAI is a multi-agent teams system. Prior to version 4.6.34, PraisonAI's MCP (Model Context Protocol) server (praisonai mcp serve) registers four file-handling tools by default — praisonai.rules…
|
CWE-20
CWE-22
CWE-94
CWE-829
CWE-913
Improper Input Validation
Path Traversal
Code Injection
Inclusion of Functionality from Untrusted Control Sphere
Improper Control of Dynamically-Managed Code Resources
|
CVE-2026-44336
|
2026-05-9 00:53 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
844
|
8.6 |
HIGH
Network
|
-
|
-
|
PraisonAI is a multi-agent teams system. Prior to praisonai version 4.6.37 and praisonaiagents version 1.6.37, praisonaiagents resolves unresolved tool names against module globals and __main__ after…
|
CWE-470
Unsafe Reflection
|
CVE-2026-44339
|
2026-05-9 00:53 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
845
|
- |
|
-
|
-
|
PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_extractall helper that all recipe pull, recipe publish, and recipe unpack flows route through validates each archive member…
|
CWE-22
CWE-59
Path Traversal
Link Following
|
CVE-2026-44340
|
2026-05-9 00:53 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
846
|
- |
|
-
|
-
|
LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.80.5 to before version 1.83.7, the POST /prompts/test endpoint accepted user-supplied prompt templ…
|
CWE-1336
Improper Neutralization of Special Elements Used in a Template Engine
|
CVE-2026-42203
|
2026-05-9 00:52 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
847
|
- |
|
-
|
-
|
LiteLLM is a proxy server (AI Gateway) to call LLM APIs in OpenAI (or native) format. From version 1.74.2 to before version 1.83.7, two endpoints used to preview an MCP server before saving it — POST…
|
CWE-77
CWE-78
Command Injection
OS Command
|
CVE-2026-42271
|
2026-05-9 00:52 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
848
|
- |
|
-
|
-
|
A vulnerability in Remote Spark SparkView before build 1122 allows an attacker to bypasses the local connection check and achieve arbitrary code execution as root on the server side. Depending on imp…
|
CWE-290
CWE-807
Authentication Bypass by Spoofing
Reliance on Untrusted Inputs in a Security Decision
|
CVE-2026-6213
|
2026-05-9 00:51 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
849
|
- |
|
-
|
-
|
Open redirection vulnerability in the latest demo version of the Cradle eCommerce platform. The vulnerability occurs in the login form endpoint, where the ‘returnUrl’ parameter allows redirection bec…
|
CWE-601
Open Redirect
|
CVE-2026-3318
|
2026-05-9 00:51 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
850
|
- |
|
-
|
-
|
Weak credentials in the CashDro 3 web administration panel, version 24.01.00.26, where the platform allows the use of numeric PINs for user authentication. The system supports the use of PIN-based cr…
|
CWE-1391
Use of Weak Credentials
|
CVE-2026-8076
|
2026-05-9 00:51 |
2026-05-8 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
