5 matches found
CVE-2025-47241
In browser-use aka Browser Use before 0.1.45, URL parsing of alloweddomains is mishandled because userinfo can be placed in the authority component...
CVE-2025-47241
In browser-use aka Browser Use before 0.1.45, URL parsing of alloweddomains is mishandled because userinfo can be placed in the authority component...
CVE-2025-47241
In browser-use aka Browser Use before 0.1.45, URL parsing of alloweddomains is mishandled because userinfo can be placed in the authority component...
CVE-2025-47241
CVE-2025-47241 affects the browser-use (Browser Use) project prior to 0.1.45. The root cause is incorrect handling of userinfo in the authority component during URL parsing of allowed_domains in BrowserContextConfig._is_url_allowed(): the code strips the port from netloc with domain.split(':')[0]...
CVE-2025-47241
In browser-use aka Browser Use before 0.1.45, URL parsing of alloweddomains is mishandled because userinfo can be placed in the authority component...