CVE-2026-60086: PraisonAI before 4.6.78 contains a prompt injection defense bypass vulnerability where the injection defense only blocks
Summary
PraisonAI versions before 4.6.78 have a vulnerability where its defense against prompt injection (tricking an AI by hiding instructions in its input) is too weak. The defense only blocks attacks rated as CRITICAL threat level, but attackers can create single or double-vector attacks rated as HIGH threat level that slip through unblocked to reach the AI model.
Vulnerability Details
5.3(medium)
EPSS: 0.0%
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
network
low
none
none
July 10, 2026
Classification
Affected Vendors
Related Issues
Original source: https://nvd.nist.gov/vuln/detail/CVE-2026-60086
First tracked: July 10, 2026 at 02:07 PM
Classified by LLM (prompt v3) · confidence: 92%