CVE-2026-34953 | MervinPraison PraisonAI up to 4.5.96 HTTP Request validate_token authorization (GHSA-98f9-fqg5-hvq5)

Inserito da Angelo Barbosa | Apr 4, 2026 | CVE

A vulnerability has been found in MervinPraison PraisonAI up to 4.5.96 and classified as critical. This affects the function validate_token of the component HTTP Request Handler. The manipulation leads to incorrect authorization.

This vulnerability is listed as CVE-2026-34953. The attack may be initiated remotely. There is no available exploit.

The affected component should be upgraded.

CVE-2026-34953 | MervinPraison PraisonAI up to 4.5.96 HTTP Request validate_token authorization (GHSA-98f9-fqg5-hvq5)

Post correlati

CVE-2024-6573 | Intelligence Plugin up to 1.4.0 on WordPress information disclosure

CVE-2026-3315 | ASSA ABLOY Visionline up to 1.32 default permission

CVE-2023-49769 | SoftLab Integrate Google Drive Plugin up to 1.3.4 on WordPress cross-site request forgery

CVE-2025-57293 | Comfast CF-XR11 2.7.2 POST Request /usr/bin/webmgnt system command injection