Description
PraisonAI versions before 4.6.78 contain a code injection vulnerability in deploy/api.py where the agents_file parameter is directly interpolated into an f-string without sanitization. Attackers can inject arbitrary Python code that executes when the generated server code runs via subprocess.Popen().
Problem types
Improper Control of Generation of Code ('Code Injection')
Product status
Any version before 4.6.78
4.6.78 (semver)
Credits
anushkavirgaonkar
References
github.com/...isonAI/security/advisories/GHSA-g6j7-pffp-8whg
github.com/...isonAI/security/advisories/GHSA-g6j7-pffp-8whg (GitHub Security Advisory (GHSA-g6j7-pffp-8whg))
www.vulncheck.com/...onai-before-code-injection-via-f-string (VulnCheck Advisory: PraisonAI before 4.6.78 Code Injection via f-string)