Vulnerabilities

ID
Packages
Summary
Published
arrow_upward
Attributes
PYSEC-2026-1281
  • PyPI/crawl4ai
Crawl4AI SSRF vulnerability 6 days ago
  • No fix available
  • Severity - 6.9 (Medium)
PYSEC-2026-2140
  • PyPI/crawl4ai
See record for full details 06 Jul
  • Fix available
  • Severity - 8.6 (High)
PYSEC-2026-2139
  • PyPI/crawl4ai
See record for full details 06 Jul
  • Fix available
  • Severity - 10.0 (Critical)
PYSEC-2026-2138
  • PyPI/crawl4ai
See record for full details 06 Jul
  • Fix available
  • Severity - 9.6 (Critical)
PYSEC-2026-798
  • PyPI/crawl4ai
See record for full details 30 Jun
  • Fix available
  • Severity - 6.1 (Medium)
PYSEC-2026-319
  • PyPI/crawl4ai
Crawl4AI: AST Sandbox Escape via gi_frame.f_back Chain - Pre-Auth RCE in Docker API 29 Jun
  • Fix available
  • Severity - 9.8 (Critical)
PYSEC-2026-229
  • PyPI/crawl4ai
See record for full details 24 Jun
  • Fix available
  • Severity - 6.5 (Medium)
PYSEC-2026-588
  • PyPI/crawl4ai
See record for full details 23 Jun
  • Fix available
  • Severity - 7.5 (High)
PYSEC-2026-587
  • PyPI/crawl4ai
See record for full details 23 Jun
  • Fix available
  • Severity - 7.5 (High)
PYSEC-2026-230
  • PyPI/crawl4ai
See record for full details 23 Jun
  • Fix available
  • Severity - 5.3 (Medium)
PYSEC-2026-228
  • PyPI/crawl4ai
See record for full details 23 Jun
  • Fix available
  • Severity - 9.2 (Critical)
PYSEC-2026-596
  • PyPI/crawl4ai
See record for full details 22 Jun
  • Fix available
  • Severity - 8.6 (High)
PYSEC-2026-239
  • PyPI/crawl4ai
See record for full details 21 Jun
  • Fix available
  • Severity - 9.3 (Critical)
GHSA-wm69-2pc3-rmmf
  • PyPI/crawl4ai
Crawl4AI: Unauthenticated SSRF on the Docker server streaming crawl path (/crawl/stream) 18 Jun
  • Fix available
  • Severity - 8.6 (High)
GHSA-r253-r9jw-qg44
  • PyPI/crawl4ai
Crawl4AI: Unauthenticated RCE via Chromium launch-argument injection in browser_config.extra_args 18 Jun
  • Fix available
  • Severity - 10.0 (Critical)
GHSA-2jq4-q6vv-4cp3
  • PyPI/crawl4ai
Crawl4AI: Arbitrary file write (path traversal) in crawler downloads can lead to RCE 18 Jun
  • Fix available
  • Severity - 9.6 (Critical)