CVE-2026-34937

CRITICAL WAF: High

CVSS 9.8 Published: 2026-04-03

CWE-78

PraisonAI is a multi-agent teams system. Prior to version 1.5.90, run_python() in praisonai constructs a shell command string by interpolating user-controlled code into python3 -c "" and passing it to subprocess.run(..., shell=True). The escaping logic only handles \ and ", leaving $() and backtick substitutions unescaped, allowing arbitrary OS command execution before Python is invoked. This issue has been patched in version 1.5.90.



        
            
                WAF Coverage Analysis
                
        
            
                OS Command Injection
                High WAF Coverage
            
            OWASP: A03:2021 Injection
            932xxx - Remote Code Execution 
        
            

            Affected Software
Vendor Product Version
praison praisonaiagents up to 1.5.90

            References
github.com (Exploit, Vendor Advisory)
        

        
            Back to CVE Database