<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>PraisonAI Platform &lt; 0.1.9 - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/products/praisonai-platform--0.1.9/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Sat, 11 Jul 2026 14:25:11 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/products/praisonai-platform--0.1.9/feed.xml" rel="self" type="application/rss+xml"/><item><title>CVE-2026-61442: PraisonAI Platform Authorization Bypass</title><link>https://feed.craftedsignal.io/briefs/2026-07-praisonai-platform-auth-bypass/</link><pubDate>Sat, 11 Jul 2026 14:25:11 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-praisonai-platform-auth-bypass/</guid><description>PraisonAI Platform versions before 0.1.9 are vulnerable to an authorization bypass on PATCH routes for projects, issues, and agents, allowing an attacker with a workspace-member role to modify owner-created records, reassign the lead_id to their own user ID, and subsequently delete owner-created projects, bypassing standard permission checks and leading to unauthorized data manipulation and deletion.</description><content:encoded><![CDATA[<p>CVE-2026-61442 identifies a critical authorization bypass vulnerability in PraisonAI Platform (praisonai-platform) versions prior to 0.1.9. This flaw stems from inadequate permission enforcement on specific PATCH routes for projects, issues, and agents. While these routes should ideally require owner or administrator privileges for sensitive modifications, they currently only check for a workspace-member role. This allows any authenticated workspace member to modify records created by owners. Specifically, an attacker can reassign the <code>lead_id</code> of an owner-created project to their own user ID. This unauthorized change effectively grants them ownership over that project, enabling them to then delete the project, circumventing the explicit owner/admin permission check on the delete route. This vulnerability poses a significant risk of unauthorized data loss and integrity compromise within the platform.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker gains authenticated access to the PraisonAI Platform as a legitimate workspace member with low-level privileges.</li>
<li>The attacker identifies a target project, issue, or agent record that was created by a platform owner or administrator.</li>
<li>The attacker crafts and sends an HTTP PATCH request to the PraisonAI Platform's PATCH route for the identified project.</li>
<li>Within the PATCH request payload, the attacker includes a modification to the <code>lead_id</code> field, assigning it to their own user ID.</li>
<li>Due to the missing authorization enforcement (CWE-862) on the PATCH route, the platform accepts and processes this request, changing the project's lead to the attacker.</li>
<li>The attacker then initiates an HTTP DELETE request for the now-modified project.</li>
<li>Because the attacker's user ID is now associated as the <code>lead_id</code> for the project, the platform's delete route permission check is bypassed, incorrectly treating the attacker as authorized.</li>
<li>The owner-created project is successfully deleted by the attacker, leading to unauthorized data destruction.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2026-61442 allows an authenticated workspace member to perform unauthorized data manipulation and deletion of critical owner-created records within the PraisonAI Platform. This can lead to significant data integrity issues, including the irreversible loss of project data, issues, or agent configurations. The vulnerability has a CVSS v3.1 base score of 7.1 (High), reflecting its significant potential for impact on availability and integrity. While no specific victim counts are available, any organization utilizing PraisonAI Platform versions before 0.1.9 is at risk of internal users maliciously or accidentally destroying sensitive data.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch PraisonAI Platform to version 0.1.9 or later immediately to address CVE-2026-61442, as indicated by the advisories in the references.</li>
<li>Review access logs for PATCH requests to <code>/projects/*</code>, <code>/issues/*</code>, or <code>/agents/*</code> routes in the PraisonAI Platform for unauthorized modifications of <code>lead_id</code> or similar ownership fields by non-admin accounts.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>authorization-bypass</category><category>vulnerability</category><category>web-application</category><category>cve</category></item></channel></rss>