CVE-2026-34934: PraisonAI <=4.5.90 SQL Injection (CRITICAL)
Plattform
php
Komponente
praisonai
Behoben in
4.5.90
CVE-2026-34934 describes a SQL Injection vulnerability affecting PraisonAI, a multi-agent teams system. The vulnerability allows an attacker to inject malicious SQL code via a crafted thread ID, potentially granting full database access. This impacts PraisonAI versions less than or equal to 4.5.90. The vulnerability is fixed in version 4.5.90.
So beheben
Kein offizieller Patch verfügbar. Prüfe auf Workarounds oder überwache auf Updates.
Häufig gestellte Fragen
What is CVE-2026-34934?
CVE-2026-34934 is a critical SQL Injection vulnerability in PraisonAI versions 4.5.90 and earlier. It allows attackers to execute arbitrary SQL commands, potentially gaining full database access.
Am I affected by CVE-2026-34934?
You are affected by CVE-2026-34934 if you are using PraisonAI version 4.5.90 or earlier. This vulnerability allows for potential unauthorized database access.
How do I fix CVE-2026-34934?
To fix CVE-2026-34934, upgrade your PraisonAI installation to version 4.5.90 or later. This version contains the necessary patch to prevent SQL injection attacks.
Abhängigkeiten automatisch überwachen
Werde benachrichtigt, wenn neue Schwachstellen deine Projekte betreffen. Für immer kostenlos.
Kostenlos starten