CVE-2026-40150

Name of the Vulnerable Software and Affected Versions PraisonAIAgents versions prior to 1.5.128

Description PraisonAIAgents is a multi-agent teams system. The web crawl() function in praisonaiagents/tools/web crawl tools.py accepts arbitrary URLs from AI agents without validation. This includes a lack of scheme allowlisting, hostname/IP blocklisting, or private network checks before fetching. This allows an attacker, or through prompt injection in crawled content, to force the agent to fetch cloud metadata endpoints, internal services, or local files via file:// URLs.

Recommendations Update PraisonAIAgents to version 1.5.128 or later.