Most recent sightings.

https://vulnerability.circl.lu/sightings/feed Most recent sightings. 2026-06-24T10:21:21.186375+00:00 Vulnerability-Lookup info@circl.lu python-feedgen Contains only the most 10 recent sightings. https://vulnerability.circl.lu/sighting/49dedc82-7b7b-4d28-9359-245850227701/export 49dedc82-7b7b-4d28-9359-245850227701 2026-06-24T10:21:21.205600+00:00 Joseph Lee https://cve.circl.lu/user/syspect {"uuid": "49dedc82-7b7b-4d28-9359-245850227701", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-53755", "type": "published-proof-of-concept", "source": "https://github.com/unclecode/crawl4ai/security/advisories/GHSA-6qhc-x826-342c", "content": "", "creation_timestamp": "2026-06-04T08:37:00.000000Z"} 2026-06-04T08:37:00+00:00 https://vulnerability.circl.lu/sighting/4a1cc079-31c1-442c-b5cc-0dee8b8eafec/export 4a1cc079-31c1-442c-b5cc-0dee8b8eafec 2026-06-24T10:21:21.205525+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "4a1cc079-31c1-442c-b5cc-0dee8b8eafec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53754", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moy7md5vu525", "content": "CVE-2026-53754 - Crawl4AI: SSRF filter bypass in Docker server via IPv6 transition forms (NAT64 / 6to4 / unspecified / v4-mapped)\nCVE ID : CVE-2026-53754\n \n Published : June 23, 2026, 6:16 p.m. | 1\u00a0hour, 27\u00a0minutes ago\n \n Description : Crawl4AI is an open-source LLM friendly w...", "creation_timestamp": "2026-06-23T20:13:32.032973Z"} 2026-06-23T20:13:32.032973+00:00 https://vulnerability.circl.lu/sighting/db84f653-4af1-41aa-a8ae-43d12fffd898/export db84f653-4af1-41aa-a8ae-43d12fffd898 2026-06-24T10:21:21.205448+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "db84f653-4af1-41aa-a8ae-43d12fffd898", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53753", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moyb32agwx26", "content": "CVE-2026-53753 - Crawl4AI: AST Sandbox Escape via gi_frame.f_back Chain - Pre-Auth RCE in Docker API\nCVE ID : CVE-2026-53753\n \n Published : June 23, 2026, 6:17 p.m. | 1\u00a0hour, 26\u00a0minutes ago\n \n Description : Crawl4AI is an open-source LLM friendly web crawler & scraper. Pri...", "creation_timestamp": "2026-06-23T20:39:39.938954Z"} 2026-06-23T20:39:39.938954+00:00 https://vulnerability.circl.lu/sighting/3d64bbe1-3052-4083-ae98-5e81da6040f4/export 3d64bbe1-3052-4083-ae98-5e81da6040f4 2026-06-24T10:21:21.205357+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "3d64bbe1-3052-4083-ae98-5e81da6040f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53755", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3moycht3map2r", "content": "CVE-2026-53755 - Crawl4AI: SSRF via proxy settings in the Docker server bypasses the crawl-URL SSRF check\nCVE ID : CVE-2026-53755\n \n Published : June 23, 2026, 6:15 p.m. | 1\u00a0hour, 28\u00a0minutes ago\n \n Description : Crawl4AI is an open-source LLM friendly web crawler & scraper...", "creation_timestamp": "2026-06-23T21:04:42.204145Z"} 2026-06-23T21:04:42.204145+00:00 https://vulnerability.circl.lu/sighting/bcf80942-0b42-4a09-a34e-c5e61e4fda15/export bcf80942-0b42-4a09-a34e-c5e61e4fda15 2026-06-24T10:21:21.205255+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "bcf80942-0b42-4a09-a34e-c5e61e4fda15", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-53753", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116802494595378111", "content": "CVE-2026-53753: CRITICAL code injection in unclecode crawl4ai (<0.8.7). Unauthenticated RCE via /crawl POST request due to insufficient AST validation. Patch to 0.8.7 ASAP. https://radar.offseq.com/threat/cve-2026-53753-cwe-94-improper-control-of-generati-9d9fc678b9a0404e #OffSeq #CVE202653753 #infosec #vuln", "creation_timestamp": "2026-06-24T01:30:29.542970Z"} 2026-06-24T01:30:29.542970+00:00 https://vulnerability.circl.lu/sighting/9dc4adb1-d0a2-45bc-b264-7eab1a07bc6f/export 9dc4adb1-d0a2-45bc-b264-7eab1a07bc6f 2026-06-24T10:21:21.202828+00:00 Automation user https://cve.circl.lu/user/automation {"uuid": "9dc4adb1-d0a2-45bc-b264-7eab1a07bc6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-53755", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mozl33izwg2j", "content": "CVE-2026-53755 - SSRF in Crawl4ai Docker API. Proxy bypass allows access to internal services & cloud metadata. CVSS 8.6. No patch available. Disable Docker API or restrict network access immediately. #CVE #infosec #Crawl4ai\n\nhttps://www.valtersit.com/cve/CVE-2026-53755/", "creation_timestamp": "2026-06-24T09:11:18.507399Z"} 2026-06-24T09:11:18.507399+00:00