Improper Output Neutralization for Logs Affecting crawl4ai package, versions [,0.8.8)


Severity

Recommended
0.0
critical
0
10

CVSS assessment by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
0.66% (47th percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk Learn

Learn about Improper Output Neutralization for Logs vulnerabilities in an interactive lesson.

Start learning
  • Snyk IDSNYK-PYTHON-CRAWL4AI-17661141
  • published28 Jun 2026
  • disclosed16 Jun 2026
  • creditUnknown

Introduced: 16 Jun 2026

NewCVE-2026-56258  (opens in a new tab)
CWE-117  (opens in a new tab)
CWE-22  (opens in a new tab)
CWE-59  (opens in a new tab)
CWE-93  (opens in a new tab)

How to fix?

Upgrade Crawl4AI to version 0.8.8 or higher.

Overview

Crawl4AI is a 🚀🤖 Crawl4AI: Open-source LLM Friendly Web Crawler & scraper

Affected versions of this package are vulnerable to Improper Output Neutralization for Logs via the output_path parameter in the Docker API server's screenshot and PDF endpoints, which failed to properly resolve symlinks and allowed file writes outside the intended directory. An attacker can achieve arbitrary file writes, potentially leading to code execution, by supplying crafted symlinked paths. Additionally, user-controlled input was reflected into log lines and webhook headers without adequate sanitization, enabling log forging and injection of unauthorized headers in outbound webhook requests. This is only exploitable if the API is left unauthenticated or the runtime user has write access to sensitive locations.

Workaround

This vulnerability can be mitigated by enabling authentication with CRAWL4AI_API_TOKEN or running the container with a read-only root filesystem.

CVSS Base Scores

version 4.0
version 3.1