CVE-2026-34953 | MervinPraison PraisonAI up to 4.5.96 HTTP Request validate_token authorization (GHSA-98f9-fqg5-hvq5)

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability has been found in MervinPraison PraisonAI up to 4.5.96 and classified as critical. This affects the function validate_token of the component HTTP Request Handler. The manipulation leads to incorrect authorization.

This vulnerability is listed as CVE-2026-34953. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-34953 | MervinPraison PraisonAI up to 4.5.96 HTTP Request validate_token authorization (GHSA-98f9-fqg5-hvq5)

Post correlati

CVE-2025-49213 | Trend Micro Endpoint Encryption PolicyServerWindowsService deserialization

CVE-2025-11276 | Rebuild up to 4.1.3 Comment/Guestbook cross site scripting

CVE-2026-1123 | Yonyou KSOA 9.0 HTTP GET Parameter /worksheet/work_mod.jsp ID sql injection

CVE-2025-0298 | code-projects Online Book Shop 1.0 /process_login.php usernm sql injection