Server-side Request Forgery (SSRF)praisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the SpiderTools._validate_url process, which fails to resolve DNS hostnames before validation. An attacker can access internal or sensitive network resources by supplying a crafted URL whose DNS A/AAAA record points to an internal, loopback, or cloud-metadata address, thereby bypassing intended network restrictions.
How to fix Server-side Request Forgery (SSRF)? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Missing Authentication for Critical Functionpraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Missing Authentication for Critical Function via the publish endpoint, which processes POST requests without validating authentication tokens. An attacker can inject arbitrary events into the server-sent events stream and leak server configuration details by sending crafted requests to the exposed endpoints.
How to fix Missing Authentication for Critical Function? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Server-side Request Forgery (SSRF)praisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the searxng_url parameter in the search_web and searxng_search functions. An attacker can cause the server to make arbitrary HTTP requests to internal or external endpoints and retrieve sensitive information by supplying a crafted URL, potentially exposing internal services, APIs, or cloud metadata. This is only exploitable if an agent ingests attacker-controlled content, such as web pages, files, or tool output, which can trigger the vulnerable function through prompt injection.
How to fix Server-side Request Forgery (SSRF)? Upgrade praisonaiagents to version 1.6.62 or higher.
| |
Protection Mechanism Failurepraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Protection Mechanism Failure in the execute_code process. An attacker can access sensitive internal attributes by crafting payloads that assemble blocklisted attribute names at runtime and leveraging str.format to bypass Python-level attribute access controls. This allows reading of restricted attributes such as __class__, __qualname__, and others, even when they are intended to be blocked.
How to fix Protection Mechanism Failure? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Missing Authorizationpraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Missing Authorization via the AgentTeam.launch process. An attacker can enumerate available agents, invoke agent actions, trigger side effects, and potentially access sensitive information by sending unauthenticated HTTP requests to the exposed endpoints.
How to fix Missing Authorization? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Arbitrary Command Injectionpraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Arbitrary Command Injection via unsanitized input in the search_emails, reply_email, and archive_email functions. An attacker can execute arbitrary IMAP commands, exfiltrate email data, terminate IMAP connections, or delete emails by supplying crafted input parameters that break out of quoted string contexts in IMAP commands. This is only exploitable if the environment is configured with valid email credentials (EMAIL_ADDRESS and EMAIL_PASSWORD environment variables set).
How to fix Arbitrary Command Injection? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Directory Traversalpraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Directory Traversal via the MentionsParser process when handling @file: mentions in agent prompts. An attacker can access arbitrary files on the filesystem that are readable by the process user by injecting specially crafted file paths, including absolute paths or those containing directory traversal sequences, into agent instructions or user messages.
How to fix Directory Traversal? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Binding to an Unrestricted IP Addresspraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Binding to an Unrestricted IP Address via the run_sse process, which binds to all network interfaces without authentication or Origin validation. An attacker can execute arbitrary registered tools, potentially leading to remote code execution, by sending crafted HTTP requests to the exposed endpoints or leveraging DNS rebinding attacks from a victim's browser.
How to fix Binding to an Unrestricted IP Address? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Missing Authorizationpraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Missing Authorization through the run_sse process. An attacker can gain unauthorized access to registered tools and interact with them by leveraging DNS rebinding and sending crafted requests with attacker-controlled Host and Origin headers. This can result in exposure, modification, or disruption of local or internal resources accessible by the exposed tools. This is only exploitable if a user starts a local or internal legacy SSE MCP server and visits a malicious website.
How to fix Missing Authorization? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Server-side Request Forgery (SSRF)praisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the scrape_page process. An attacker can access internal network resources and read sensitive information by supplying a crafted URL that redirects to restricted destinations such as loopback or private addresses.
How to fix Server-side Request Forgery (SSRF)? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
Incorrect Authorizationpraisonaiagents is a Praison AI agents for completing complex tasks with Self Reflection Agents
Affected versions of this package are vulnerable to Incorrect Authorization via the submit_job process. An attacker can execute arbitrary OS commands on the server by submitting a crafted YAML payload to the unauthenticated API endpoint, which leverages the approve field to bypass approval checks and invoke dangerous functionality.
How to fix Incorrect Authorization? Upgrade praisonaiagents to version 1.6.59 or higher.
| |
