{"vulnerability": "cve-2026-61444", "sightings": [{"uuid": "2f158195-2b7c-4bb4-8ea9-0ab18223f0ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mqck7yabkh27", "content": "CVE-2026-61444 - PraisonAI before 4.6.78 Code Injection via f-string\nCVE ID : CVE-2026-61444\n \n Published : July 10, 2026, 3:16 p.m. | 32\u00a0minutes ago\n \n Description : PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file...", "creation_timestamp": "2026-07-10T16:15:18.051709Z"}, {"uuid": "7b2ea529-d5d5-40d1-98e2-a3470dd9eb67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/stackflag.bsky.social/post/3mqclwzjjnb2f", "content": "CVE-2026-61444\nOld versions of PraisonAI may allow attackers to inject and run malicious code on your system. This could happen if you run an outdated version of PraisonAI and an attacker sends a specially crafted request. To\u2026\n\nToo many irrelevant or confusing CVEs? Use stackflag.com\n\n#CVE #infosec", "creation_timestamp": "2026-07-10T16:46:05.034107Z"}, {"uuid": "1c9ba42b-12d3-4436-85d2-ec0969c2a4a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqcxpdd2vg2f", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61444 \u0432 PraisonAI: \u0443\u0433\u0440\u043e\u0437\u0430 \u043a\u043e\u0434\u043e\u0432\u043e\u0439 \u0438\u043d\u044a\u0435\u043a\u0446\u0438\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/779EE65E-1B51-4818-823B-2581DEB16CC4", "creation_timestamp": "2026-07-10T20:16:31.863257Z"}, {"uuid": "63ddfca2-e1b3-425b-b323-87a03c801eaa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mqdcxer6yr2e", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2026-61444 \u0432 PraisonAI: \u0443\u0433\u0440\u043e\u0437\u0430 \u043a\u043e\u0434\u043e\u0432\u043e\u0439 \u0438\u043d\u044a\u0435\u043a\u0446\u0438\u0438 \u0438 \u0441\u043f\u043e\u0441\u043e\u0431\u044b \u0437\u0430\u0449\u0438\u0442\u044b\n\n\n\nhttps://kripta.biz/posts/5060FB42-BA87-49D4-BA5D-7C51D67CC63C", "creation_timestamp": "2026-07-10T23:37:52.964515Z"}, {"uuid": "cfaf555d-2fd6-4c77-88f2-81bd5fb19469", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mqg6qo3jgk2a", "content": "\ud83d\udd34 CVE-2026-61444 - Critical (9.1)\n\nPraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where th...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-61444/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-07-12T03:00:32.448769Z"}, {"uuid": "601fc6ff-0ef3-47e7-b37a-96acaf49e7e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mqgfl3wllt2n", "content": "Daily IT Security Digest \u2014 2026-07-12\naccess to compromised infrastructure.\nSources: [Dark Reading](https://www.darkreading.com/threat-intel)\n\n## 5. PraisonAI Code Injection: CVE-2026-61444 (CVSS 9.1)\nPraisonAI versions before 4.6.78 contain a critical (9.1) code injection vulnerability in", "creation_timestamp": "2026-07-12T05:02:41.388600Z"}, {"uuid": "3f202907-2397-4b72-ac90-4e98017beedd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-61444", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mqgfl4ieaj2e", "content": "Daily IT Security Digest \u2014 2026-07-12\nsystems.\nSources: [The Hacker Wire](https://www.thehackerwire.com/vulnerability/CVE-2026-61444/)\n\n## 6. miniOrange OAuth SSO: Critical Auth Bypass \u2014 CVE-2026-57807\nA CRITICAL authentication bypass vulnerability (CVE-2026-57807) exists in miniOrange OAuth SSO", "creation_timestamp": "2026-07-12T05:02:41.939148Z"}]}