Critical severity9.0NVD Advisory· Published Apr 7, 2026· Updated Apr 16, 2026
CVE-2026-39305
CVE-2026-39305
Description
PraisonAI is a multi-agent teams system. Prior to 1.5.113, the Action Orchestrator feature contains a Path Traversal vulnerability that allows an attacker (or compromised agent) to write to arbitrary files outside of the configured workspace directory. By supplying relative path segments (../) in the target path, malicious actions can overwrite sensitive system files or drop executable payloads on the host. This vulnerability is fixed in 1.5.113.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
PraisonAIPyPI | < 4.5.113 | 4.5.113 |
Affected products
1Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/MervinPraison/PraisonAI/security/advisories/GHSA-jfxc-v5g9-38xrnvdExploitVendor AdvisoryWEB
- github.com/advisories/GHSA-jfxc-v5g9-38xrghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-39305ghsaADVISORY
- github.com/MervinPraison/PraisonAI/releases/tag/v4.5.113ghsaWEB
News mentions
0No linked articles in our index yet.