CVE-2026-60087
MEDIUM
NVD
CVSS Score
6.1
Severity
MEDIUM
Published
Jul 15, 2026
Vendor
unknown
Description
PraisonAI before 1.6.78 caches tool approval decisions by tool name only, allowing attackers to reuse initial approvals for subsequent calls with arbitrary arguments. Attackers can exploit this by obtaining approval for a benign operation and then executing dangerous file write operations with unreviewed parameters in the same session.