PT-2026-50809 · Praisonai · Praisonai

Published

2026-06-18

Updated

2026-06-18

CVE-2026-56078

CVSS v3.1

8.8

High

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

PraisonAI before 1.5.115 contains a path traversal vulnerability in MultiAgentMonitor that fails to sanitize agent IDs when building file paths. Attackers can include traversal sequences like ../ in agent IDs to read, write, or overwrite arbitrary files, enabling sensitive disclosure, denial of service, or code execution.

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2026-56078

Affected Products

Praisonai

PT-2026-50809 · Praisonai · Praisonai

CVE-2026-56078

Weakness Enumeration

Related Identifiers

Affected Products

References · 4