https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sat, 06 Jun 2026 05:45:06 +0000 https://vulnerability.circl.lu/sighting/a6802bb3-44b3-4090-838e-3a9a8efb0c2a/export {"uuid": "a6802bb3-44b3-4090-838e-3a9a8efb0c2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4434", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhiuojen7q2y", "content": "", "creation_timestamp": "2026-03-20T15:51:37.141877Z"} {"uuid": "a6802bb3-44b3-4090-838e-3a9a8efb0c2a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-4434", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhiuojen7q2y", "content": "", "creation_timestamp": "2026-03-20T15:51:37.141877Z"} https://vulnerability.circl.lu/sighting/a6802bb3-44b3-4090-838e-3a9a8efb0c2a/export Fri, 20 Mar 2026 15:51:37 +0000 https://vulnerability.circl.lu/sighting/498ea20c-2d6a-4c0c-bb51-9d1749017f90/export {"uuid": "498ea20c-2d6a-4c0c-bb51-9d1749017f90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44345", "type": "published-proof-of-concept", "source": "https://github.com/bentoml/BentoML/security/advisories/GHSA-78f9-r8mh-4xm2", "content": "", "creation_timestamp": "2026-05-07T10:38:12.000000Z"} {"uuid": "498ea20c-2d6a-4c0c-bb51-9d1749017f90", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44345", "type": "published-proof-of-concept", "source": "https://github.com/bentoml/BentoML/security/advisories/GHSA-78f9-r8mh-4xm2", "content": "", "creation_timestamp": "2026-05-07T10:38:12.000000Z"} https://vulnerability.circl.lu/sighting/498ea20c-2d6a-4c0c-bb51-9d1749017f90/export Thu, 07 May 2026 10:38:12 +0000 https://vulnerability.circl.lu/sighting/1bd133ec-1db8-4155-89f9-795550082632/export {"uuid": "1bd133ec-1db8-4155-89f9-795550082632", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44346", "type": "published-proof-of-concept", "source": "https://github.com/bentoml/BentoML/security/advisories/GHSA-w2pm-x38x-jp44", "content": "", "creation_timestamp": "2026-05-07T10:39:30.000000Z"} {"uuid": "1bd133ec-1db8-4155-89f9-795550082632", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-44346", "type": "published-proof-of-concept", "source": "https://github.com/bentoml/BentoML/security/advisories/GHSA-w2pm-x38x-jp44", "content": "", "creation_timestamp": "2026-05-07T10:39:30.000000Z"} https://vulnerability.circl.lu/sighting/1bd133ec-1db8-4155-89f9-795550082632/export Thu, 07 May 2026 10:39:30 +0000 https://vulnerability.circl.lu/sighting/51869d70-25a2-4b52-b014-9c800f8f8252/export {"uuid": "51869d70-25a2-4b52-b014-9c800f8f8252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mleccwzhbj2k", "content": "CVE-2026-44340 - PraisonAI: Symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir`\nCVE ID : CVE-2026-44340\n \n Published : May 8, 2026, 2:16 p.m. | 26\u00a0minutes ago\n \n Description : PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_ext...", "creation_timestamp": "2026-05-08T17:53:08.986314Z"} {"uuid": "51869d70-25a2-4b52-b014-9c800f8f8252", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mleccwzhbj2k", "content": "CVE-2026-44340 - PraisonAI: Symlink-extraction bypass of `_safe_extractall` writes outside `dest_dir`\nCVE ID : CVE-2026-44340\n \n Published : May 8, 2026, 2:16 p.m. | 26\u00a0minutes ago\n \n Description : PraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_ext...", "creation_timestamp": "2026-05-08T17:53:08.986314Z"} https://vulnerability.circl.lu/sighting/51869d70-25a2-4b52-b014-9c800f8f8252/export Fri, 08 May 2026 17:53:08 +0000 https://vulnerability.circl.lu/sighting/0f8fa218-e6d8-4831-b117-177c6c101215/export {"uuid": "0f8fa218-e6d8-4831-b117-177c6c101215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlektkylyt2k", "content": "\ud83d\udfe0 CVE-2026-44340 - High (7.5)\n\nPraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_extractall helper tha...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44340/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:25:37.167036Z"} {"uuid": "0f8fa218-e6d8-4831-b117-177c6c101215", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlektkylyt2k", "content": "\ud83d\udfe0 CVE-2026-44340 - High (7.5)\n\nPraisonAI is a multi-agent teams system. Prior to version 4.6.37, the _safe_extractall helper tha...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-44340/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:25:37.167036Z"} https://vulnerability.circl.lu/sighting/0f8fa218-e6d8-4831-b117-177c6c101215/export Fri, 08 May 2026 20:25:37 +0000 https://vulnerability.circl.lu/sighting/679f4b84-60ec-4740-afff-19b375ca32d1/export {"uuid": "679f4b84-60ec-4740-afff-19b375ca32d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://gist.github.com/alon710/f2ee63d3f5bee80df62671f0ee792142", "content": "# CVE-2026-44340: CVE-2026-44340: Arbitrary File Write via Symlink Traversal in PraisonAI Tar Extraction\n\n> **CVSS Score:** 8.7\n> **Published:** 2026-05-11\n> **Full Report:** https://cvereports.com/reports/CVE-2026-44340\n\n## Summary\nPraisonAI versions prior to 4.6.37 contain a path traversal vulnerability in the `_safe_extractall` function. The flaw allows an attacker to write arbitrary files outside the intended extraction directory via maliciously crafted tar archives containing unresolved symbolic links.\n\n## TL;DR\nA symlink-based path traversal in PraisonAI's recipe unpacking allows arbitrary file overwriting, potentially leading to remote code execution.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-59 (Link Following) / CWE-22 (Path Traversal)\n- **Attack Vector**: Network (Malicious Archive)\n- **CVSS 4.0 Score**: 8.7\n- **CVSS 3.1 Score**: 7.5\n- **Impact**: Arbitrary File Write / Remote Code Execution\n- **EPSS Score**: 0.00017\n- **Exploit Status**: PoC Available\n\n## Affected Systems\n\n- PraisonAI multi-agent teams system prior to 4.6.37\n- **PraisonAI**: < 4.6.37 (Fixed in: `4.6.37`)\n\n## Mitigation\n\n- Upgrade PraisonAI to version 4.6.37.\n- Execute PraisonAI within a Python 3.12+ environment to enable native tarfile extraction filters.\n- Apply the principle of least privilege to the OS account executing the PraisonAI cli tool.\n\n**Remediation Steps:**\n1. Identify all hosts running PraisonAI using package management tools or dependency scanners.\n2. Update the `praisonai` package to `==4.6.37` via pip or the relevant package manager.\n3. Verify the installed Python runtime is version 3.12 or greater.\n4. Audit application directories and system configuration files for unexpected modifications if malicious archives are suspected.\n\n## References\n\n- [NVD - CVE-2026-44340](https://nvd.nist.gov/vuln/detail/CVE-2026-44340)\n- [GitHub Security Advisory GHSA-9q28-ghcr-c4x3](https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-9q28-ghcr-c4x3)\n- [PraisonAI Fix Commit 0cec9fd1c3fc457c70712d97e21ea1caaa32ecda](https://github.com/MervinPraison/PraisonAI/commit/0cec9fd1c3fc457c70712d97e21ea1caaa32ecda)\n- [PraisonAI Release v4.6.37](https://github.com/MervinPraison/PraisonAI/commit/d15c57d80c11cab856bd5dd15ff7880f19d2ccf2)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-44340) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-05-11T14:10:29.000000Z"} {"uuid": "679f4b84-60ec-4740-afff-19b375ca32d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44340", "type": "seen", "source": "https://gist.github.com/alon710/f2ee63d3f5bee80df62671f0ee792142", "content": "# CVE-2026-44340: CVE-2026-44340: Arbitrary File Write via Symlink Traversal in PraisonAI Tar Extraction\n\n> **CVSS Score:** 8.7\n> **Published:** 2026-05-11\n> **Full Report:** https://cvereports.com/reports/CVE-2026-44340\n\n## Summary\nPraisonAI versions prior to 4.6.37 contain a path traversal vulnerability in the `_safe_extractall` function. The flaw allows an attacker to write arbitrary files outside the intended extraction directory via maliciously crafted tar archives containing unresolved symbolic links.\n\n## TL;DR\nA symlink-based path traversal in PraisonAI's recipe unpacking allows arbitrary file overwriting, potentially leading to remote code execution.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-59 (Link Following) / CWE-22 (Path Traversal)\n- **Attack Vector**: Network (Malicious Archive)\n- **CVSS 4.0 Score**: 8.7\n- **CVSS 3.1 Score**: 7.5\n- **Impact**: Arbitrary File Write / Remote Code Execution\n- **EPSS Score**: 0.00017\n- **Exploit Status**: PoC Available\n\n## Affected Systems\n\n- PraisonAI multi-agent teams system prior to 4.6.37\n- **PraisonAI**: < 4.6.37 (Fixed in: `4.6.37`)\n\n## Mitigation\n\n- Upgrade PraisonAI to version 4.6.37.\n- Execute PraisonAI within a Python 3.12+ environment to enable native tarfile extraction filters.\n- Apply the principle of least privilege to the OS account executing the PraisonAI cli tool.\n\n**Remediation Steps:**\n1. Identify all hosts running PraisonAI using package management tools or dependency scanners.\n2. Update the `praisonai` package to `==4.6.37` via pip or the relevant package manager.\n3. Verify the installed Python runtime is version 3.12 or greater.\n4. Audit application directories and system configuration files for unexpected modifications if malicious archives are suspected.\n\n## References\n\n- [NVD - CVE-2026-44340](https://nvd.nist.gov/vuln/detail/CVE-2026-44340)\n- [GitHub Security Advisory GHSA-9q28-ghcr-c4x3](https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-9q28-ghcr-c4x3)\n- [PraisonAI Fix Commit 0cec9fd1c3fc457c70712d97e21ea1caaa32ecda](https://github.com/MervinPraison/PraisonAI/commit/0cec9fd1c3fc457c70712d97e21ea1caaa32ecda)\n- [PraisonAI Release v4.6.37](https://github.com/MervinPraison/PraisonAI/commit/d15c57d80c11cab856bd5dd15ff7880f19d2ccf2)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/CVE-2026-44340) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-05-11T14:10:29.000000Z"} https://vulnerability.circl.lu/sighting/679f4b84-60ec-4740-afff-19b375ca32d1/export Mon, 11 May 2026 14:10:29 +0000 https://vulnerability.circl.lu/sighting/f0a65616-00e9-4bd2-8db8-94b3751edbf1/export {"uuid": "f0a65616-00e9-4bd2-8db8-94b3751edbf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44347", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlp4znj3va2h", "content": "CVE-2026-44347 - Warpgate: SSO CSRF -- State Token Not Validated on Return\nCVE ID : CVE-2026-44347\n \n Published : May 12, 2026, 11:16 p.m. | 1\u00a0hour, 14\u00a0minutes ago\n \n Description : Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO...", "creation_timestamp": "2026-05-13T01:17:45.605721Z"} {"uuid": "f0a65616-00e9-4bd2-8db8-94b3751edbf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44347", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlp4znj3va2h", "content": "CVE-2026-44347 - Warpgate: SSO CSRF -- State Token Not Validated on Return\nCVE ID : CVE-2026-44347\n \n Published : May 12, 2026, 11:16 p.m. | 1\u00a0hour, 14\u00a0minutes ago\n \n Description : Warpgate is an open source SSH, HTTPS and MySQL bastion host for Linux. Prior to 0.23.3, the SSO...", "creation_timestamp": "2026-05-13T01:17:45.605721Z"} https://vulnerability.circl.lu/sighting/f0a65616-00e9-4bd2-8db8-94b3751edbf1/export Wed, 13 May 2026 01:17:45 +0000 https://vulnerability.circl.lu/sighting/74215391-8f11-43b8-8513-6ac1b975896e/export {"uuid": "74215391-8f11-43b8-8513-6ac1b975896e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44341", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlp54zbqtv2o", "content": "CVE-2026-44341 - GoJobs: Insecure Direct Object Reference (IDOR) in Job Retrieval Endpoint\nCVE ID : CVE-2026-44341\n \n Published : May 12, 2026, 11:16 p.m. | 1\u00a0hour, 14\u00a0minutes ago\n \n Description : GoJobs is a REST API for a Job Board platform. The application exposes a job ret...", "creation_timestamp": "2026-05-13T01:19:38.716940Z"} {"uuid": "74215391-8f11-43b8-8513-6ac1b975896e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44341", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mlp54zbqtv2o", "content": "CVE-2026-44341 - GoJobs: Insecure Direct Object Reference (IDOR) in Job Retrieval Endpoint\nCVE ID : CVE-2026-44341\n \n Published : May 12, 2026, 11:16 p.m. | 1\u00a0hour, 14\u00a0minutes ago\n \n Description : GoJobs is a REST API for a Job Board platform. The application exposes a job ret...", "creation_timestamp": "2026-05-13T01:19:38.716940Z"} https://vulnerability.circl.lu/sighting/74215391-8f11-43b8-8513-6ac1b975896e/export Wed, 13 May 2026 01:19:38 +0000 https://vulnerability.circl.lu/sighting/03084730-e1f3-4fe3-be91-e9810bcbf924/export {"uuid": "03084730-e1f3-4fe3-be91-e9810bcbf924", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44348", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mlxrlcxp2r2b", "content": "[Backport release-25.11] podofo_1_0: 1.0.3 -> 1.0.4, fix CVE-2026-44348\n\nhttps://github.com/NixOS/nixpkgs/pull/520646\n\nhttps://tracker.security.nixos.org/issues/NIXPKGS-2026-1584\n\n#security", "creation_timestamp": "2026-05-16T11:46:51.568005Z"} {"uuid": "03084730-e1f3-4fe3-be91-e9810bcbf924", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-44348", "type": "seen", "source": "https://bsky.app/profile/nixpkgssecuritychanges.gerbet.me/post/3mlxrlcxp2r2b", "content": "[Backport release-25.11] podofo_1_0: 1.0.3 -> 1.0.4, fix CVE-2026-44348\n\nhttps://github.com/NixOS/nixpkgs/pull/520646\n\nhttps://tracker.security.nixos.org/issues/NIXPKGS-2026-1584\n\n#security", "creation_timestamp": "2026-05-16T11:46:51.568005Z"} https://vulnerability.circl.lu/sighting/03084730-e1f3-4fe3-be91-e9810bcbf924/export Sat, 16 May 2026 11:46:51 +0000