PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-60091 MervinPraison CVE debrief

CVE-2026-60091 is a medium-severity vulnerability in PraisonAI before version 4.6.78, allowing unauthenticated server-side request forgery via the Jobs API /api/v1/runs endpoint. The vulnerability is caused by the webhook_url parameter being validated at request time but re-resolved at connection time, enabling attackers to use DNS rebinding for a blind SSRF attack on internal services.

Vendor
MervinPraison
Product
PraisonAI
CVSS
MEDIUM 6.9
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-10
Original CVE updated
2026-07-10
Advisory published
2026-07-10
Advisory updated
2026-07-10

Who should care

Users of PraisonAI before version 4.6.78 should prioritize updating to the latest version to mitigate this vulnerability. Security teams and administrators responsible for PraisonAI installations should assess their exposure and take necessary actions.

Technical summary

The CVE-2026-60091 vulnerability in PraisonAI before 4.6.78 is caused by improper validation of the webhook_url parameter in the Jobs API /api/v1/runs endpoint. This parameter is validated at request time but re-resolved at connection time, allowing attackers to exploit DNS rebinding and conduct blind SSRF attacks on internal services. The vulnerability has a CVSS score of 6.9 and is classified as medium severity.

Defensive priority

Medium priority should be given to updating PraisonAI to version 4.6.78 or later. Security teams should review their current configurations and assess potential exposure to internal services that could be targeted via this SSRF vulnerability.

Recommended defensive actions

  • Update PraisonAI to version 4.6.78 or later
  • Review and restrict access to the Jobs API /api/v1/runs endpoint
  • Implement additional monitoring for suspicious activity related to SSRF attacks
  • Consider implementing compensating controls such as IP blocking or traffic filtering
  • Review network configurations to prevent DNS rebinding attacks
  • Conduct regular security audits to identify potential vulnerabilities
  • Verify that all instances of PraisonAI are running the latest version

Evidence notes

The CVE record was published on 2026-07-10T15:16:49.700Z and last modified on 2026-07-10T17:41:47.303Z. The NVD entry is currently Deferred. Limited details are available about the specific affected configurations and potential attack vectors beyond the provided CVE and NVD information.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-10T15:16:49.700Z and has not been modified since then. The NVD entry is currently Deferred.