{"uuid": "31c5354d-78c4-4eb0-9e70-99d7664ef9f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-61447", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116904062949725994", "content": "CVE-2026-61447: CRITICAL RCE in MervinPraison PraisonAI (&lt;1.6.78). Unauthenticated attackers can exploit prompt injection to run arbitrary Python, risking system compromise &amp; secret leaks. No patch yet \u2014 restrict exposure &amp; monitor use. https://radar.offseq.com/threat/cve-2026-61447-improper-control-of-generation-of-c-51bde3fa75b4e680 #OffSeq #CVE202661447 #infosec #RCE", "creation_timestamp": "2026-07-12T00:00:37.795198Z"}