CVE-2026-61447: PraisonAI before 1.6.78 contains a remote code execution vulnerability in CodeAgent._execute_python() that executes LLM-
Summary
PraisonAI before version 1.6.78 has a critical remote code execution vulnerability in its CodeAgent._execute_python() function, which runs Python code generated by the AI without proper safety checks like AST validation (checking code structure before running it) or sandboxing (isolating code so it can't access the full system). Attackers can use prompt injection (tricking the AI by hiding malicious instructions in their input) to make the AI generate harmful code that steals secret credentials from the system or runs arbitrary commands.
Solution / Mitigation
Upgrade PraisonAI to version 1.6.78 or later.
Vulnerability Details
10(critical)
EPSS: 0.0%
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
network
low
none
none
July 11, 2026
Classification
Taxonomy References
Affected Vendors
Related Issues
CVE-2026-34371: LibreChat is a ChatGPT clone with additional features. Prior to 0.8.4, LibreChat trusts the name field returned by the e
CVE-2024-27444: langchain_experimental (aka LangChain Experimental) in LangChain before 0.1.8 allows an attacker to bypass the CVE-2023-
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-61447
First tracked: July 11, 2026 at 02:07 PM
Classified by LLM (prompt v3) · confidence: 95%