CVE-2026-39307

Published: Apr 7, 2026Modified: Apr 16, 2026

8.1

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

Exploitability: 2.8 / Impact: 5.2

Source: security-advisories@github.com (Secondary)

Description

PraisonAI is a multi-agent teams system. Prior to 1.5.113, The PraisonAI templates installation feature is vulnerable to a "Zip Slip" Arbitrary File Write attack. When downloading and extracting template archives from external sources (e.g., GitHub), the application uses Python's zipfile.extractall() without verifying if the files within the archive resolve outside of the intended extraction directory. This vulnerability is fixed in 1.5.113.

Affected (1)

Products: Praison: Praisonai

1 product

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Praison Praisonai	Up to 4.5.112

Related CWEs

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References (1)

https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-4ph2-f6pf-79wv

Source: security-advisories@github.com

ExploitVendor Advisory

Timeline

No history available yet.