Back to Dashboard

CVE-2026-60090

Published: July 11, 2026Last Modified: July 11, 2026
CVSS SCORE
9.8
CRITICAL

Vulnerability Description

PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-store create_collection() backends. Although schema, keyspace, and collection-name identifiers are validated, the dimension value (declared as int but not enforced at runtime) is interpolated directly into the vector column of the generated CREATE TABLE DDL. A caller able to influence collection-creation dimensions can pass a string such as '3); DROP TABLE tenant_secrets; --' to inject SQL/CQL tokens into the statement executed by the database driver.

Affected Products & Versions

No configurations parsed from local entry.

Mitigation & Remediation

Update the affected packages to a secure version. Refer to vendor security advisories.

Share Advisory

Copy the standardized markdown formatted vulnerability report to post in Slack, Teams, email, or ticketing systems.

# CRITICAL - CVE-2026-60090 ## EFFECT PraisonAI before 4.6.78 fails to validate the caller-controlled dimension argument in the PGVector and Cassandra knowledge-store create_collection() backends. Although schema, keyspace, and collection-name identifiers are validated, the dimension value (declared as int but not enforced at runtime) is interpolated directly into the vector column of the generated CREATE TABLE DDL. A caller able to influence collection-creation dimensions can pass a string such as '3); DROP TABLE tenant_secrets; --' to inject SQL/CQL tokens into the statement executed by the database driver. ## AFFECTED Unknown products ## LINKS - [github.com](https://github.com/MervinPraison/PraisonAI/commit/3aa9cbc2bd49c23a32be0a89a5e620d13d843eab) - [github.com](https://github.com/MervinPraison/PraisonAI/security/advisories/GHSA-wf65-4jjx-q444) - [www.vulncheck.com](https://www.vulncheck.com/advisories/praisonai-before-sql-cql-injection-via-vector-dimension) ## SOLUTION - Update the affected packages to a secure version. Refer to vendor security advisories.