Lucene search
K

6 matches found

NVD
NVD
added 2026/06/10 4:17 p.m.9 views

CVE-2026-46497

Crawlee is a web scraping and browser automation library. From version 1.0.0 to before version 1.7.0, Crawlee is vulnerable to SSRF via sitemap-derived URLs. This issue has been patched in version 1.7.0...

2.3CVSS0.00286EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/10 3:51 p.m.9 views

EUVD-2026-36067

Crawlee is a web scraping and browser automation library. From version 1.0.0 to before version 1.7.0, Crawlee is vulnerable to SSRF via sitemap-derived URLs. This issue has been patched in version 1.7.0...

2.3CVSS5.4AI score0.00286EPSS
Exploits0References2
CVE
CVE
added 2026/06/10 3:51 p.m.26 views

CVE-2026-46497

CVE-2026-46497 affects Crawlee (Python) from 1.0.0 up to before 1.7.0. An attacker-controlled sitemap or robots.txt can cause SSRF to internal HTTP endpoints (Layer 1) via sitemap-derived URLs, potentially affecting internal services. A second Layer (Layer 2) exists for CurlImpersonateHttpClient ...

2.3CVSS5.4AI score0.00286EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/10 3:51 p.m.31 views

CVE-2026-46497 SSRF via sitemap-derived URLs in Crawlee for Python

Crawlee is a web scraping and browser automation library. From version 1.0.0 to before version 1.7.0, Crawlee is vulnerable to SSRF via sitemap-derived URLs. This issue has been patched in version 1.7.0...

2.3CVSS0.00286EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/06/10 12:0 a.m.12 views

crawlee 代码问题漏洞

Crawlee is an open-source web scraping and browser automation library developed by Apify. Versions of Crawlee from 1.0.0 to 1.7.0 had code vulnerabilities. These vulnerabilities stemmed from URLs generated using site maps, which could lead to server-side request forgeing attacks...

2.3CVSS5.3AI score0.00286EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2026/05/21 7:28 p.m.6 views

apify (=3.0.0rc1), bagit-create (>=1.2.0 <=1.4.4) potentially affected by CVE-2026-46497 via crawlee (>=1.0.0rc1 <=1.1.0)

crawlee PYPI version =1.0.0rc1, =1.2.0, =1.4.4 Source cves: CVE-2026-46497 Source advisory: OSV:GHSA-3R75-XC34-5F44...

2.3CVSS5.5AI score0.00286EPSS
Exploits0
Rows per page
Query Builder