๐Ÿ” CVE Alert

CVE-2026-56259

HIGH 8.2

Crawl4AI - LLM Credential Exfiltration via base_url and Environment Variable Resolution

CVSS Score
8.2
EPSS Score
0.0%
EPSS Percentile
0th

Crawl4AI before 0.8.8 contains credential exfiltration vulnerabilities in the Docker API server that allow attackers to redirect LLM API calls to attacker-controlled endpoints and read arbitrary environment variables. Attackers can exploit the unauthenticated /md, /llm, and /llm/job endpoints by supplying a malicious base_url parameter and setting api_token to env:VARIABLE_NAME to exfiltrate provider API keys and server secrets including JWT SECRET_KEY for authentication bypass.

CWE CWE-200
Vendor crawl4ai
Product crawl4ai
Published Jul 12, 2026
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for crawl4ai crawl4ai

Be the first to know when new high vulnerabilities affecting crawl4ai crawl4ai are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
Low
Availability
None

Affected Versions

Crawl4AI / Crawl4AI
0 < 0.8.8

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
github.com: https://github.com/unclecode/crawl4ai/security/advisories/GHSA-f989-c77f-r2cq vulncheck.com: https://www.vulncheck.com/advisories/crawl4ai-llm-credential-exfiltration-via-base-url-and-environment-variable-resolution

Credits

๐Ÿ” geo-chen