Path Traversal Vulnerability in PraisonAI by Mervin Praison
CVE-2026-56078
8.7HIGH
What is CVE-2026-56078?
PraisonAI versions before 1.5.115 are susceptible to a path traversal vulnerability in the MultiAgentMonitor component. This flaw arises from inadequate sanitization of agent IDs, allowing attackers to use traversal sequences (such as ../) to access, modify, or overwrite files on the server. Exploitation of this vulnerability can lead to unauthorized information disclosure, potential denial of service, or arbitrary code execution, posing significant risks to system integrity and security.
Affected Version(s)
PraisonAI 0 < 1.5.115
PraisonAI 1.5.115