CVE-2026-39305 CRITICAL

CVE-2026-39305: Arbitrary File Write / Path Traversal in Action Orchestrator

Vendor Mervinpraison
Product PraisonAI
Weakness CWE-22 · Path traversal
Published April 7, 2026
Last update April 7, 2026

CVSS base score

9.0/10
Attack vector Local
Attack complexity Low
Privileges required None
User interaction None
Confidentiality None
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:H

What the vulnerability does

01Description

PraisonAI is a multi-agent teams system. Prior to 1.5.113, the Action Orchestrator feature contains a Path Traversal vulnerability that allows an attacker (or compromised agent) to write to arbitrary files outside of the configured workspace directory. By supplying relative path segments (../) in the target path, malicious actions can overwrite sensitive system files or drop executable payloads on the host. This vulnerability is fixed in 1.5.113.

Key dates

02Disclosure timeline

April 7, 2026 CVE published
April 7, 2026 Record updated