CVE Catalog

CVE-2026-44335

Critical
Published: Translated: NVD NIST

Summary

PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI had a logical flaw that could be bypassed by attackers, leading to SSRF attacks.

Risk Assessment

Organizations using PraisonAI prior to version 1.6.32 are vulnerable to SSRF attacks, which may lead to unauthorized access to internal resources.

Recommendation

It is recommended to upgrade to version 1.6.32 or later to mitigate this vulnerability.

Original NVD description (English source)

PraisonAI is a multi-agent teams system. Prior to version 1.6.32, the URL checking logic in PraisonAI has a logical flaw that could be bypassed by attackers, leading to SSRF attacks. This issue has been patched in version 1.6.32.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS