{"uuid": "7abe9857-2f71-4a9a-ad50-eb0b0de38832", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "GHSA-2jq4-q6vv-4cp3", "type": "seen", "source": "https://gist.github.com/alon710/2aa5fa13eea204ffabb0321701e9195f", "content": "# GHSA-2JQ4-Q6VV-4CP3: GHSA-2JQ4-Q6VV-4CP3: Arbitrary File Write via Path Traversal in Crawl4AI Downloads\n\n> **CVSS Score:** 9.6\n> **Published:** 2026-06-18\n> **Full Report:** https://cvereports.com/reports/GHSA-2JQ4-Q6VV-4CP3\n\n## Summary\nA critical Arbitrary File Write vulnerability exists in Crawl4AI versions 0.8.9 and below. By manipulating download filenames via Content-Disposition headers or suggested_filename values, attackers can write arbitrary files to any location on the file system, potentially leading to Remote Code Execution.\n\n## TL;DR\nCrawl4AI <= 0.8.9 allows arbitrary file write and path traversal, potentially leading to RCE via unauthenticated /crawl endpoints or victim-initiated crawling.\n\n## Exploit Status: POC\n\n## Technical Details\n\n- **CWE ID**: CWE-22, CWE-59\n- **Attack Vector**: Network (AV:N)\n- **CVSS Score**: 9.6 (Critical)\n- **Impact**: Arbitrary File Write / Remote Code Execution\n- **Exploit Status**: Proof-of-Concept\n- **KEV Status**: Not Listed\n\n## Affected Systems\n\n- Crawl4AI (Python package) <= 0.8.9\n- **crawl4ai**: <= 0.8.9 (Fixed in: `0.9.0`)\n\n## Mitigation\n\n- Upgrade the crawl4ai library to version 0.9.0 or higher.\n- Restrict execution privileges by running the crawler process as a non-root user.\n- Isolate the download directory to a dedicated, restricted volume.\n\n**Remediation Steps:**\n1. Run 'pip install --upgrade crawl4ai' to deploy the latest patched release.\n2. Verify that the active deployment is running version 0.9.0 or later.\n3. Implement the CRAWL4AI_API_TOKEN environment variable in Docker containers to secure API endpoints.\n\n## References\n\n- [GitHub Security Advisory GHSA-2jq4-q6vv-4cp3](https://github.com/unclecode/crawl4ai/security/advisories/GHSA-2jq4-q6vv-4cp3)\n- [GitHub Advisory Database Entry GHSA-2JQ4-Q6VV-4CP3](https://github.com/advisories/GHSA-2JQ4-Q6VV-4CP3)\n- [Fix Commit in unclecode/crawl4ai](https://github.com/unclecode/crawl4ai/commit/60886d1a0c52682e4c83a7cef9dfac417fff6bd2)\n- [Crawl4AI Repository](https://github.com/unclecode/crawl4ai)\n\n\n---\n*Generated by [CVEReports](https://cvereports.com/reports/GHSA-2JQ4-Q6VV-4CP3) - Automated Vulnerability Intelligence*", "creation_timestamp": "2026-06-18T19:21:43.000000Z"}