Credential Exfiltration Vulnerability in Crawl4AI by UncleCode
CVE-2026-56259
8.8HIGH
What is CVE-2026-56259?
Crawl4AI versions prior to 0.8.8 expose several endpoints in the Docker API server that can be exploited to exfiltrate sensitive credentials. By manipulating the base_url parameter, attackers are able to redirect calls to malicious endpoints. This allows them to access arbitrary environment variables by setting the api_token to env:VARIABLE_NAME, which can include critical data such as provider API keys and JWT secrets. Such vulnerabilities can lead to serious security breaches, including authentication bypass.
Affected Version(s)
Crawl4AI 0 < 0.8.8
Crawl4AI 0.8.8
