CVE-2026-40148 | MervinPraison PraisonAI up to 4.5.127 _safe_extractall data amplification (GHSA-f2h6-7xfr-xm8w)

Inserito da Angelo Barbosa | Apr 10, 2026 | CVE

A vulnerability has been found in MervinPraison PraisonAI up to 4.5.127 and classified as problematic. This affects the function _safe_extractall. Performing a manipulation results in highly compressed data.

This vulnerability was named CVE-2026-40148. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-40148 | MervinPraison PraisonAI up to 4.5.127 _safe_extractall data amplification (GHSA-f2h6-7xfr-xm8w)

Post correlati

CVE-2023-52180 | Really Simple Plugins Recipe Maker For Your Food Blog from Zip Recipes Plugin sql injection

CVE-2024-4188 | OpenText Documentum Server up to 23.4 unprotected transport of credentials (KB0815868)

CVE-2024-21848 | Mattermost Server up to 8.1.10/9.5.0 Call access control

CVE-2023-41848 | Majeed Raza Carousel Slider Plugin up to 2.2.2 on WordPress authorization