CVE-2026-40315 | MervinPraison PraisonAI up to 4.5.132 Configuration config.py table_prefix sql injection (GHSA-x783-xp3g-mqhp)

A vulnerability was found in MervinPraison PraisonAI up to 4.5.132. It has been declared as critical. This vulnerability affects unknown code of the file config.py of the component Configuration Handler. Such manipulation of the argument table_prefix leads to sql injection.

This vulnerability is uniquely identified as CVE-2026-40315. The attack can be launched remotely. No exploit exists.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More