<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-15T05:08:13.563350+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/7abe9857-2f71-4a9a-ad50-eb0b0de38832/export</id>
    <title>7abe9857-2f71-4a9a-ad50-eb0b0de38832</title>
    <updated>2026-07-15T05:08:13.580786+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "7abe9857-2f71-4a9a-ad50-eb0b0de38832", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-2jq4-q6vv-4cp3", "type": "seen", "source": "https://gist.github.com/alon710/2aa5fa13eea204ffabb0321701e9195f", "content": "# GHSA-2JQ4-Q6VV-4CP3: GHSA-2JQ4-Q6VV-4CP3: Arbitrary File Write via Path Traversal in Crawl4AI Downloads\n\n&amp;gt; **CVSS Score:** 9.6\n&amp;gt; **Published:** 2026-06-18\n&amp;gt; **Full Report:** https://cvereports.com/reports/GHSA-2JQ4-Q6VV-4CP3\n\n## Summary\nA critical Arbitrary File Write vulnerability exists in Crawl4AI versions 0.8.9 and below. By manipulating download filenames via Content-Disposition headers or suggested_filename values, attackers can write arbitrary files to any location on the file system, potentially leading to Remote Code Execution.\n\n## TL;DR\nCrawl4AI &amp;lt;= 0.8.9 allows arbitrary file write and path traversal, potentially leading to RCE via unauthenticated /crawl endpoints or victim-initiated crawling.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22, CWE-59\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 9.6 (Critical)\n- **Impact**: Arbitrary File Write / Remote Code Execution\n- **Exploit Status**: Proof-of-Concept\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- Crawl4AI (Python package) &amp;lt;= 0.8.9\n- **crawl4ai**: &amp;lt;= 0.8.9 (Fixed in: `0.9.0`)\n\n## Mitigation\n\n- Upgrade the crawl4ai library to version 0.9.0 or higher.\n- Restrict execution privileges by running the crawler process as a non-root user.\n- Isolate the download directory to a dedicated, restricted volume.\n\n**Remediation Steps:**\n1. Run 'pip install --upgrade crawl4ai' to deploy the latest patched release.\n2. Verify that the active deployment is running version 0.9.0 or later.\n3. Implement the CRAWL4AI_API_TOKEN environment variable in Docker containers to secure API endpoints.\n\n## References\n\n- [GitHub Security Advisory GHSA-2jq4-q6vv-4cp3](https://github.com/unclecode/crawl4ai/security/advisories/GHSA-2jq4-q6vv-4cp3)\n- [GitHub Advisory Database Entry GHSA-2JQ4-Q6VV-4CP3](https://github.com/advisories/GHSA-2JQ4-Q6VV-4CP3)\n- [Fix Commit in unclecode/crawl4ai](https://github.com/unclecode/crawl4ai/commit/60886d1a0c52682e4c83a7cef9dfac417fff6bd2)\n- [Crawl4AI Repository](https://github.com/unclecode/crawl4ai)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/GHSA-2JQ4-Q6VV-4CP3) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-18T19:21:43.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/7abe9857-2f71-4a9a-ad50-eb0b0de38832/export"/>
    <published>2026-06-18T19:21:43+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/8339c839-a7b2-4ab7-9d12-fac86d81caba/export</id>
    <title>8339c839-a7b2-4ab7-9d12-fac86d81caba</title>
    <updated>2026-07-15T05:08:13.582435+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://vulnerability.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "8339c839-a7b2-4ab7-9d12-fac86d81caba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-2jq4-q6vv-4cp3", "type": "seen", "source": "https://gist.github.com/alon710/2a767af5c208a82e89707e10b62dcf61", "content": "# GHSA-2JQ4-Q6VV-4CP3: GHSA-2JQ4-Q6VV-4CP3: Arbitrary File Write via Path Traversal in Crawl4AI Downloads\n\n&amp;gt; **CVSS Score:** 9.6\n&amp;gt; **Published:** 2026-06-18\n&amp;gt; **Full Report:** https://cvereports.com/reports/GHSA-2JQ4-Q6VV-4CP3\n\n## Summary\nA critical Arbitrary File Write vulnerability exists in Crawl4AI versions 0.8.9 and below. By manipulating download filenames via Content-Disposition headers or suggested_filename values, attackers can write arbitrary files to any location on the file system, potentially leading to Remote Code Execution.\n\n## TL;DR\nCrawl4AI &amp;lt;= 0.8.9 allows arbitrary file write and path traversal, potentially leading to RCE via unauthenticated /crawl endpoints or victim-initiated crawling.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22, CWE-59\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 9.6 (Critical)\n- **Impact**: Arbitrary File Write / Remote Code Execution\n- **Exploit Status**: Proof-of-Concept\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- Crawl4AI (Python package) &amp;lt;= 0.8.9\n- **crawl4ai**: &amp;lt;= 0.8.9 (Fixed in: `0.9.0`)\n\n## Mitigation\n\n- Upgrade the crawl4ai library to version 0.9.0 or higher.\n- Restrict execution privileges by running the crawler process as a non-root user.\n- Isolate the download directory to a dedicated, restricted volume.\n\n**Remediation Steps:**\n1. Run 'pip install --upgrade crawl4ai' to deploy the latest patched release.\n2. Verify that the active deployment is running version 0.9.0 or later.\n3. Implement the CRAWL4AI_API_TOKEN environment variable in Docker containers to secure API endpoints.\n\n## References\n\n- [GitHub Security Advisory GHSA-2jq4-q6vv-4cp3](https://github.com/unclecode/crawl4ai/security/advisories/GHSA-2jq4-q6vv-4cp3)\n- [GitHub Advisory Database Entry GHSA-2JQ4-Q6VV-4CP3](https://github.com/advisories/GHSA-2JQ4-Q6VV-4CP3)\n- [Fix Commit in unclecode/crawl4ai](https://github.com/unclecode/crawl4ai/commit/60886d1a0c52682e4c83a7cef9dfac417fff6bd2)\n- [Crawl4AI Repository](https://github.com/unclecode/crawl4ai)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/GHSA-2JQ4-Q6VV-4CP3) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-18T19:11:23.000000Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/8339c839-a7b2-4ab7-9d12-fac86d81caba/export"/>
    <published>2026-06-18T19:11:23+00:00</published>
  </entry>
</feed>
