A vulnerability marked as critical has been reported in MervinPraison PraisonAI up to 4.6.77. This impacts an unknown function of the component Webhook Mode. This manipulation of the argument sender causes improper verification of cryptographic signature.

This vulnerability is registered as CVE-2026-61428. Remote exploitation of the attack is possible. No exploit is available.