Threat Intelligence Database

CVE-2026-53755 is a Server-Side Request Forgery (SSRF) vulnerability in unclecode's crawl4ai web crawler versions prior to 0.8.9. The vulnerability arises because the Docker API server only applied SSRF destination checks to the crawl target URL, not to proxy addresses. This allowed unauthenticated attackers to specify a proxy pointing to internal IP addresses or cloud metadata endpoints, enabling access to internal services via the crawler. The issue affects multiple proxy configuration fields that feed Chromium's egress and were unchecked. The vulnerability is fixed in version 0.8.9.

CVE-2026-53754 is a Server-Side Request Forgery (SSRF) vulnerability in the open-source web crawler crawl4ai prior to version 0.8.8. The vulnerability arises because the Docker API server's SSRF protection used an incomplete IPv4/IPv6 CIDR blocklist, allowing attackers to bypass filters by encoding internal IPv4 addresses in IPv6 transition forms or using the IPv6 unspecified address. Since the Docker API is unauthenticated by default, attackers can exploit this to reach internal services and cloud metadata endpoints without credentials. The issue is fixed in version 0.8.8.

CVE-2026-53753 is a critical code injection vulnerability in the open-source web crawler crawl4ai prior to version 0.8.7. The vulnerability arises from improper control in the _safe_eval_expression() function, which uses an AST validator that only blocks attributes starting with an underscore. This allows attackers to exploit Python generator and frame object attributes that do not start with an underscore to escape the sandbox and execute arbitrary code. The attack requires no authentication and is triggered via a crafted POST request to the /crawl endpoint. The vulnerability is fixed in version 0.8.7.