CVE-2026-34954: PraisonAI: SSRF in FileTools.download_file() via Unvalidated URL

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-34954

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

PraisonAI: SSRF in FileTools.download_file() via Unvalidated URL

Source: NVD (National Vulnerability Database)

Vulnerability Description

PraisonAI is a multi-agent teams system. Prior to version 1.5.95, FileTools.download_file() in praisonaiagents validates the destination path but performs no validation on the url parameter, passing it directly to httpx.stream() with follow_redirects=True. An attacker who controls the URL can reach any host accessible from the server including cloud metadata services and internal network services. This issue has been patched in version 1.5.95.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

服务端请求伪造(SSRF)

Source: NVD (National Vulnerability Database)

Vulnerability Title

PraisonAI 代码问题漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

PraisonAI是Mervin Praison个人开发者的一个低代码多智能体协作框架。 PraisonAI 1.5.95之前版本存在代码问题漏洞，该漏洞源于FileTools.download_file函数验证目标路径但未验证url参数，可能导致攻击者控制URL访问服务器可访问的任何主机。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
MervinPraison	PraisonAI	< 1.5.95	-

II. Public POCs for CVE-2026-34954

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

kimi-k2.5 · 8228 chars

Paid plan includes:

In-depth vulnerability mechanism

Trigger conditions & impact

Full executable POC code

Exploit chain & mitigation

POC zip download

100+ AI POC generations per month

Upgrade Pro to unlock ¥99/month Sign up first

III. Intelligence Information for CVE-2026-34954

Please Login to view more intelligence information

IV. Related Vulnerabilities

Same product: PraisonAI

Same vendor: MervinPraison

Same weakness: CWE-918

V. Comments for CVE-2026-34954

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2026-34954

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-34954

III. Intelligence Information for CVE-2026-34954

IV. Related Vulnerabilities

V. Comments for CVE-2026-34954

Leave a comment