crawl4ai
python · crawl4aiCritical
crawl4ai: Sandbox Escape in _safe_eval_expression() Leads to RCE
The `_safe_eval_expression()` function in computed fields allowed sandbox escape via generator/frame attributes, leading to unauth
17 Jun 2026 · act now
python · crawl4aiCritical
crawl4ai Docker API Server SSRF Protection Bypass
The SSRF protection in validate_webhook_url/validate_url_destination used an incomplete IPv4/IPv6 CIDR blocklist, allowing bypasse
17 Jun 2026 · act now
python · crawl4aiCritical
crawl4ai Docker API Server Allows LLM Endpoint Control and Environment Variable Exfiltration
The Docker API server allowed attackers to control the LLM endpoint (base_url) and read arbitrary environment variables via env: i
17 Jun 2026 · act now
python · crawl4aiCritical
crawl4ai: Critical Security Fixes for Arbitrary File Write, CRLF Injection, and Header Injection
Three security fixes: (1) Arbitrary file write via symlink/TOCTOU in screenshot/PDF output_path; (2) CRLF log injection; (3) Webho
17 Jun 2026 · act now
python · crawl4aiCritical
crawl4ai Docker API now validates proxy destinations for global routability
The Docker API server now validates proxy destinations with the same global-routability check used for crawl URLs, rejecting any r
17 Jun 2026 · act now