GHSA-rcmc-q9rj-4wmq: praisonai-platform: Any workspace member can rewrite workspace name, description, and settings via PATCH /workspaces/{id}
mediumvulnerability
security
Summary
The `PATCH /workspaces/{id}` endpoint in praisonai-platform allows any workspace member to change the workspace's name, description, and settings (a free-form JSON configuration object) because it only checks that the user is a member, not that they have owner-level permissions. This is dangerous because attackers could inject malicious settings that could redirect API calls to attacker-controlled servers, disable logging, or change other critical configurations depending on what the platform reads from the settings field.
Vulnerability Details
EPSS (30-day exploit probability)
EPSS: 0.0%
Patch Available
Yes
Disclosure Date
June 1, 2026
Classification
Attack Type
Other
Attack SophisticationTrivial
Impact (CIA+S)
integrity
AI Component TargetedAPI
Affected Vendors
Affected Packages
praisonai-platform@< 0.1.4 (fixed: 0.1.4)
Related Issues
Monthly digest — independent AI security research
Original source: https://github.com/advisories/GHSA-rcmc-q9rj-4wmq
First tracked: June 1, 2026 at 02:00 PM
Classified by LLM (prompt v3) · confidence: 92%