A vulnerability, which was classified as very critical, has been found in MervinPraison PraisonAI up to 1.6.77. This affects the function CodeAgent._execute_python of the component AST Validation. The manipulation leads to injection.

This vulnerability is traded as CVE-2026-61447. It is possible to initiate the attack remotely. There is no exploit available.