CVE-2026-39307: PraisonAI Has Arbitrary File Write (Zip Slip) in Templates Extraction

April 6, 2026

The PraisonAI templates installation feature is vulnerable to a “Zip Slip” Arbitrary File Write attack. When downloading and extracting template archives from external sources (e.g., GitHub), the application uses Python’s zipfile.extractall() without verifying if the files within the archive resolve outside of the intended extraction directory.

References

github.com/MervinPraison/PraisonAI
github.com/MervinPraison/PraisonAI/releases/tag/v4.5.113
github.com/MervinPraison/PraisonAI/security/advisories/GHSA-4ph2-f6pf-79wv
github.com/advisories/GHSA-4ph2-f6pf-79wv
nvd.nist.gov/vuln/detail/CVE-2026-39307

Code Behaviors & Features

Detect and mitigate CVE-2026-39307 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →