Django REST framework

Lookup for vulnerabilities affecting packages.

Vulnerability_id VCID-ef5j-f7yr-7yfk

Summary Crawl4AI versions prior to 0.8.0 contain a local file inclusion vulnerability in the Docker API deployment. The /execute_js, /screenshot, /pdf, and /html endpoints accept file:// URLs, allowing unauthenticated remote attackers to read arbitrary files from the server filesystem. An attacker can access sensitive files such as /etc/passwd, /etc/shadow, application configuration files, and environment variables via /proc/self/environ, potentially exposing credentials, API keys, and internal application structure.

Aliases

alias	CVE-2026-26217

alias	GHSA-vx9w-5cx4-9796

alias	PYSEC-2026-34

Fixed_packages

url	pkg:pypi/crawl4ai@0.8.0
purl	pkg:pypi/crawl4ai@0.8.0
is_vulnerable	`false`
affected_by_vulnerabilities
resource_url	http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.8.0

Affected_packages

url pkg:pypi/crawl4ai@0.3.0

purl pkg:pypi/crawl4ai@0.3.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.0

url pkg:pypi/crawl4ai@0.3.1

purl pkg:pypi/crawl4ai@0.3.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.1

url pkg:pypi/crawl4ai@0.3.2

purl pkg:pypi/crawl4ai@0.3.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.2

url pkg:pypi/crawl4ai@0.3.3

purl pkg:pypi/crawl4ai@0.3.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.3

url pkg:pypi/crawl4ai@0.3.4

purl pkg:pypi/crawl4ai@0.3.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.4

url pkg:pypi/crawl4ai@0.3.5

purl pkg:pypi/crawl4ai@0.3.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.5

url pkg:pypi/crawl4ai@0.3.6

purl pkg:pypi/crawl4ai@0.3.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.6

url pkg:pypi/crawl4ai@0.3.7

purl pkg:pypi/crawl4ai@0.3.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.7

url pkg:pypi/crawl4ai@0.3.8

purl pkg:pypi/crawl4ai@0.3.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.8

url pkg:pypi/crawl4ai@0.3.71

purl pkg:pypi/crawl4ai@0.3.71

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.71

url pkg:pypi/crawl4ai@0.3.72

purl pkg:pypi/crawl4ai@0.3.72

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.72

url pkg:pypi/crawl4ai@0.3.73

purl pkg:pypi/crawl4ai@0.3.73

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.73

url pkg:pypi/crawl4ai@0.3.74

purl pkg:pypi/crawl4ai@0.3.74

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.74

url pkg:pypi/crawl4ai@0.3.731

purl pkg:pypi/crawl4ai@0.3.731

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.731

url pkg:pypi/crawl4ai@0.3.741

purl pkg:pypi/crawl4ai@0.3.741

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.741

url pkg:pypi/crawl4ai@0.3.742

purl pkg:pypi/crawl4ai@0.3.742

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.742

url pkg:pypi/crawl4ai@0.3.743

purl pkg:pypi/crawl4ai@0.3.743

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.743

url pkg:pypi/crawl4ai@0.3.744

purl pkg:pypi/crawl4ai@0.3.744

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.744

url pkg:pypi/crawl4ai@0.3.745

purl pkg:pypi/crawl4ai@0.3.745

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.745

url pkg:pypi/crawl4ai@0.3.746

purl pkg:pypi/crawl4ai@0.3.746

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.3.746

url pkg:pypi/crawl4ai@0.4.0

purl pkg:pypi/crawl4ai@0.4.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.0

url pkg:pypi/crawl4ai@0.4.1

purl pkg:pypi/crawl4ai@0.4.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.1

url pkg:pypi/crawl4ai@0.4.3b1

purl pkg:pypi/crawl4ai@0.4.3b1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.3b1

url pkg:pypi/crawl4ai@0.4.3b2

purl pkg:pypi/crawl4ai@0.4.3b2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.3b2

url pkg:pypi/crawl4ai@0.4.3b3

purl pkg:pypi/crawl4ai@0.4.3b3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.3b3

url pkg:pypi/crawl4ai@0.4.21

purl pkg:pypi/crawl4ai@0.4.21

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.21

url pkg:pypi/crawl4ai@0.4.22

purl pkg:pypi/crawl4ai@0.4.22

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.22

url pkg:pypi/crawl4ai@0.4.23

purl pkg:pypi/crawl4ai@0.4.23

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.23

url pkg:pypi/crawl4ai@0.4.24

purl pkg:pypi/crawl4ai@0.4.24

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.24

url pkg:pypi/crawl4ai@0.4.241

purl pkg:pypi/crawl4ai@0.4.241

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.241

url pkg:pypi/crawl4ai@0.4.242

purl pkg:pypi/crawl4ai@0.4.242

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.242

url pkg:pypi/crawl4ai@0.4.243

purl pkg:pypi/crawl4ai@0.4.243

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.243

url pkg:pypi/crawl4ai@0.4.244

purl pkg:pypi/crawl4ai@0.4.244

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.244

url pkg:pypi/crawl4ai@0.4.245

purl pkg:pypi/crawl4ai@0.4.245

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.245

url pkg:pypi/crawl4ai@0.4.246

purl pkg:pypi/crawl4ai@0.4.246

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.246

url pkg:pypi/crawl4ai@0.4.247

purl pkg:pypi/crawl4ai@0.4.247

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.247

url pkg:pypi/crawl4ai@0.4.248b3

purl pkg:pypi/crawl4ai@0.4.248b3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.248b3

url pkg:pypi/crawl4ai@0.4.248

purl pkg:pypi/crawl4ai@0.4.248

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.4.248

url pkg:pypi/crawl4ai@0.5.0

purl pkg:pypi/crawl4ai@0.5.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0

url pkg:pypi/crawl4ai@0.5.0.post1

purl pkg:pypi/crawl4ai@0.5.0.post1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post1

url pkg:pypi/crawl4ai@0.5.0.post2

purl pkg:pypi/crawl4ai@0.5.0.post2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post2

url pkg:pypi/crawl4ai@0.5.0.post3

purl pkg:pypi/crawl4ai@0.5.0.post3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post3

url pkg:pypi/crawl4ai@0.5.0.post4

purl pkg:pypi/crawl4ai@0.5.0.post4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post4

url pkg:pypi/crawl4ai@0.5.0.post5

purl pkg:pypi/crawl4ai@0.5.0.post5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post5

url pkg:pypi/crawl4ai@0.5.0.post6

purl pkg:pypi/crawl4ai@0.5.0.post6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post6

url pkg:pypi/crawl4ai@0.5.0.post7

purl pkg:pypi/crawl4ai@0.5.0.post7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post7

url pkg:pypi/crawl4ai@0.5.0.post8

purl pkg:pypi/crawl4ai@0.5.0.post8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.5.0.post8

url pkg:pypi/crawl4ai@0.6.0rc1

purl pkg:pypi/crawl4ai@0.6.0rc1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.6.0rc1

url pkg:pypi/crawl4ai@0.6.0

purl pkg:pypi/crawl4ai@0.6.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.6.0

url pkg:pypi/crawl4ai@0.6.1

purl pkg:pypi/crawl4ai@0.6.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.6.1

url pkg:pypi/crawl4ai@0.6.2

purl pkg:pypi/crawl4ai@0.6.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.6.2

url pkg:pypi/crawl4ai@0.6.3

purl pkg:pypi/crawl4ai@0.6.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.6.3

url pkg:pypi/crawl4ai@0.7.0

purl pkg:pypi/crawl4ai@0.7.0

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.0

url pkg:pypi/crawl4ai@0.7.1

purl pkg:pypi/crawl4ai@0.7.1

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.1

url pkg:pypi/crawl4ai@0.7.2

purl pkg:pypi/crawl4ai@0.7.2

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.2

url pkg:pypi/crawl4ai@0.7.3

purl pkg:pypi/crawl4ai@0.7.3

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.3

url pkg:pypi/crawl4ai@0.7.4

purl pkg:pypi/crawl4ai@0.7.4

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.4

url pkg:pypi/crawl4ai@0.7.5

purl pkg:pypi/crawl4ai@0.7.5

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.5

url pkg:pypi/crawl4ai@0.7.6

purl pkg:pypi/crawl4ai@0.7.6

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.6

url pkg:pypi/crawl4ai@0.7.7

purl pkg:pypi/crawl4ai@0.7.7

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.7

url pkg:pypi/crawl4ai@0.7.8

purl pkg:pypi/crawl4ai@0.7.8

is_vulnerable true

affected_by_vulnerabilities

vulnerability	VCID-ef5j-f7yr-7yfk

vulnerability	VCID-tvag-1xns-5yck

resource_url http://public2.vulnerablecode.io/packages/pkg:pypi/crawl4ai@0.7.8

References

reference_url	https://github.com/unclecode/crawl4ai
reference_id
reference_type
scores
url	https://github.com/unclecode/crawl4ai

reference_url

https://github.com/unclecode/crawl4ai/blob/main/docs/blog/release-v0.8.0.md

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://github.com/unclecode/crawl4ai/blob/main/docs/blog/release-v0.8.0.md

reference_url	https://github.com/unclecode/crawl4ai/blob/release/v0.8.0/docs/blog/release-v0.8.0.md
reference_id
reference_type
scores
url	https://github.com/unclecode/crawl4ai/blob/release/v0.8.0/docs/blog/release-v0.8.0.md

reference_url	https://github.com/unclecode/crawl4ai/blob/release/v0.8.0/docs/migration/v0.8.0-upgrade-guide.md
reference_id
reference_type
scores
url	https://github.com/unclecode/crawl4ai/blob/release/v0.8.0/docs/migration/v0.8.0-upgrade-guide.md

reference_url

https://github.com/unclecode/crawl4ai/security/advisories/GHSA-vx9w-5cx4-9796

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://github.com/unclecode/crawl4ai/security/advisories/GHSA-vx9w-5cx4-9796

reference_url

https://www.vulncheck.com/advisories/crawl4ai-docker-api-local-file-inclusion-via-file-url-handling

reference_id

reference_type

scores

value	7.5
scoring_system	cvssv3.1
scoring_elements	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

url

https://www.vulncheck.com/advisories/crawl4ai-docker-api-local-file-inclusion-via-file-url-handling

reference_url	https://nvd.nist.gov/vuln/detail/CVE-2026-26217
reference_id	CVE-2026-26217
reference_type
scores
url	https://nvd.nist.gov/vuln/detail/CVE-2026-26217

reference_url	https://github.com/advisories/GHSA-vx9w-5cx4-9796
reference_id	GHSA-vx9w-5cx4-9796
reference_type
scores
url	https://github.com/advisories/GHSA-vx9w-5cx4-9796

Weaknesses

cwe_id	22
name	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
description	The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

cwe_id	937
name	OWASP Top Ten 2013 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2013.

cwe_id	1035
name	OWASP Top Ten 2017 Category A9 - Using Components with Known Vulnerabilities
description	Weaknesses in this category are related to the A9 category in the OWASP Top Ten 2017.

Exploits

Severity_range_score 7.5 - 7.5

Exploitability null

Weighted_severity null

Risk_score null

Resource_url http://public2.vulnerablecode.io/vulnerabilities/VCID-ef5j-f7yr-7yfk

Vulnerability Instance