Server-side Request Forgery (SSRF) Affecting crawl4ai package, versions [,0.8.9)


Severity

Recommended
0.0
high
0
10

CVSS assessment by Snyk's Security Team. Learn more

Threat Intelligence

EPSS
0.29% (21st percentile)

Do your applications use this vulnerable package?

In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.

Test your applications

Snyk Learn

Learn about Server-side Request Forgery (SSRF) vulnerabilities in an interactive lesson.

Start learning
  • Snyk IDSNYK-PYTHON-CRAWL4AI-17661142
  • published28 Jun 2026
  • disclosed16 Jun 2026
  • creditUnknown

Introduced: 16 Jun 2026

NewCVE-2026-53755  (opens in a new tab)
CWE-918  (opens in a new tab)

How to fix?

Upgrade Crawl4AI to version 0.8.9 or higher.

Overview

Crawl4AI is a 🚀🤖 Crawl4AI: Open-source LLM Friendly Web Crawler & scraper

Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the proxy_config.server parameter in the browser_config or crawler_config objects, as well as related proxy settings in extra_args. An attacker can access internal services and cloud-metadata endpoints by supplying a proxy address pointing to internal IPs, causing the server to route requests through attacker-controlled proxies and return sensitive responses.

Workaround

This vulnerability can be mitigated by enabling authentication (CRAWL4AI_API_TOKEN) or restricting the container's outbound network access (egress firewall / no metadata route).

References

CVSS Base Scores

version 4.0
version 3.1