CVE-2026-39307

HIGH

PraisonAI has an Arbitrary File Write (Zip Slip) in Templates Extraction

Title source: cna
STIX 2.1

Description

PraisonAI is a multi-agent teams system. Prior to 1.5.113, The PraisonAI templates installation feature is vulnerable to a "Zip Slip" Arbitrary File Write attack. When downloading and extracting template archives from external sources (e.g., GitHub), the application uses Python's zipfile.extractall() without verifying if the files within the archive resolve outside of the intended extraction directory. This vulnerability is fixed in 1.5.113.

References (1)

Scores

CVSS v3 8.1
EPSS 0.0005
EPSS Percentile 14.0%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact partial

Details

CWE
CWE-22
Status published
Products (3)
MervinPraison/PraisonAI < 4.5.113
praison/praisonai < 4.5.112
pypi/PraisonAI 0 - 4.5.113PyPI
Published Apr 07, 2026
Tracked Since Apr 07, 2026