CVE-2026-60090 | MervinPraison PraisonAI up to 4.6.77 Knowledge-Store Backend create_collection dimension injection

SecurityVulns

A vulnerability categorized as critical has been discovered in MervinPraison PraisonAI up to 4.6.77. The affected element is the function create_collection of the component Knowledge-Store Backend. Executing a manipulation of the argument dimension can lead to injection.

This vulnerability is tracked as CVE-2026-60090. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More