Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2026/02/13 7:18 p.m.6 views

CVE-2026-26216

Crawl4AI versions prior to 0.8.0 contain a remote code execution vulnerability in the Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec. The import builtin was included in the allowed builtins, allowing unauthenticated remote...

10CVSS6.7AI score0.01589EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-11903

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00296EPSS
Exploits0References3
Veracode
Veracode
added 2025/04/29 5:39 a.m.4 views

Server-Side Request Forgery (SSRF)

Crawl4AI is vulnerable to Server-Side Request Forgery SSRF. The vulnerability is due to improper input validation and insufficient sanitization of user-controlled URLs in /crawl4ai/asyncdispatcher.py, allowing unauthorized internal network access...

9.1CVSS6.7AI score0.00296EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/04/18 9:31 p.m.4 views

GHSA-445M-27CF-GR3X Crawl4AI SSRF vulnerability

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

6.9CVSS6.7AI score0.00296EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/04/18 9:31 p.m.9 views

Crawl4AI SSRF vulnerability

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

9.1CVSS7AI score0.00296EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/04/18 8:15 p.m.18 views

CVE-2025-28197

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

9.1CVSS0.00296EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/18 12:0 a.m.3 views

CVE-2025-28197

Crawl4AI =0.4.247 is vulnerable to SSRF in /crawl4ai/asyncdispatcher.py...

6.8AI score0.00296EPSS
Exploits0References1
CVE
CVE
added 2025/04/18 12:0 a.m.95 views

CVE-2025-28197

CVE-2025-28197 relates to Crawl4AI

9.1CVSS6.5AI score0.00296EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder