CVE-2026-56260
Received Received - Intake

Arbitrary File Write in Crawl4AI Docker API Server

Vulnerability report for CVE-2026-56260, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-07-12

Last updated on: 2026-07-12

Assigner: VulnCheck

Description

Crawl4AI before 0.8.7 contains an arbitrary file write vulnerability in the Docker API server's /screenshot and /pdf endpoints. The output_path parameter accepts arbitrary filesystem paths without validation, allowing an attacker to supply absolute or path-traversal values to write to any location writable by the application's user, overwriting server files and causing denial of service.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-07-12
Last Modified
2026-07-12
Generated
2026-07-12
AI Q&A
2026-07-12
EPSS Evaluated
N/A
NVD
EUVD

Affected Vendors & Products

Showing 1 associated CPE
Vendor Product Version / Range
unclecode crawl4ai to 0.8.7 (exc)

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-22 The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

Crawl4AI versions before 0.8.7 contain a critical arbitrary file write vulnerability in the Docker API server's /screenshot and /pdf endpoints.

The vulnerability arises because the output_path parameter accepts arbitrary filesystem paths without validation, allowing an attacker to supply absolute or path-traversal values.

This enables an attacker to write files to any location writable by the application's user, potentially overwriting server files.

Such overwrites can cause denial of service by corrupting or replacing critical files.

Compliance Impact

The vulnerability allows arbitrary file writes on the server, enabling attackers to overwrite files and cause denial of service. This can impact the integrity and availability of data handled by the application.

Such impacts on data integrity and availability could potentially lead to non-compliance with regulations like GDPR and HIPAA, which require protection of data confidentiality, integrity, and availability.

However, the provided information does not explicitly describe the direct effects on compliance with these standards.

Impact Analysis

This vulnerability can allow attackers to overwrite important server files by writing arbitrary files to locations writable by the application user.

The consequences include denial of service due to corrupted or replaced files, which can disrupt the availability of the Crawl4AI service.

Because the attacker can write files arbitrarily, it may also lead to further exploitation depending on what files are overwritten.

Detection Guidance

The vulnerability involves arbitrary file writes via the Docker API server's /screenshot and /pdf endpoints using the output_path parameter without validation. Detection can focus on monitoring or inspecting requests to these endpoints for suspicious usage of absolute paths or path traversal sequences in the output_path parameter.

You can detect potential exploitation attempts by capturing and analyzing HTTP requests to the vulnerable endpoints. For example, using network monitoring tools or command-line utilities like curl or tcpdump to inspect traffic.

  • Use tcpdump or Wireshark to capture HTTP traffic on the Docker API server port and filter for requests to /screenshot or /pdf endpoints.
  • Example tcpdump command: tcpdump -A -s 0 'tcp port <docker_api_port> and (((ip[2:2] - ((ip[0]&0xf)<<2)) - ((tcp[12]&0xf0)>>2)) != 0)' | grep -E 'POST /screenshot|POST /pdf'
  • Use curl to manually test the endpoints for path traversal by sending crafted requests with output_path parameters containing ../ sequences or absolute paths.
  • Example curl command: curl -X POST http://<docker_api_server>/screenshot -d 'output_path=../../../../etc/passwd'

Additionally, reviewing application logs for unusual file write operations or errors related to file access may help identify exploitation attempts.

Mitigation Strategies

Immediate mitigation steps include upgrading Crawl4AI to version 0.8.7 or later, where the vulnerability has been fixed by implementing path validation on the output_path parameter.

If upgrading is not immediately possible, restrict access to the Docker API server endpoints /screenshot and /pdf to trusted users only, for example by firewall rules or network segmentation.

Disable or restrict the use of the vulnerable endpoints until a patch can be applied.

Monitor logs and network traffic for suspicious activity targeting these endpoints.

Apply general security best practices such as running the application with least privilege and ensuring authentication and authorization controls are properly configured.

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2026-56260. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart