Known Vulnerabilities for products from Kidocode
Listed below are 13 of the newest known vulnerabilities associated with the vendor "Kidocode".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-57573 json | Crawl4AI is an open-source LLM-friendly web crawler and scraper. Prior to 0.9.0, the Docker API server applied its SSRF desti... | Not Provided | 2026-07-06 | 2026-07-07 |
| CVE-2026-57572 json | Crawl4AI is an open-source LLM-friendly web crawler and scraper. Prior to 0.9.0, the Docker API server accepted request-suppl... | Not Provided | 2026-07-06 | 2026-07-08 |
| CVE-2026-57571 json | Crawl4AI is an open-source LLM-friendly web crawler and scraper. Prior to 0.9.0, when the crawler saves a downloaded file, th... | Not Provided | 2026-07-06 | 2026-07-07 |
| CVE-2026-56266 json | Crawl4AI before 0.8.7 contains a server-side request forgery vulnerability in the /crawl, /crawl/stream, /md, and /llm endpoi... | Not Provided | 2026-06-22 | 2026-06-30 |
| CVE-2026-56265 json | Crawl4AI before 0.8.7 contains an authentication bypass vulnerability due to a hardcoded default JWT signing key in the Docke... | Not Provided | 2026-06-21 | 2026-06-26 |
| CVE-2026-56264 json | Crawl4AI before 0.8.7 contains an arbitrary JavaScript execution vulnerability in the Docker API server's /execute_js endpoin... | Not Provided | 2026-06-30 | 2026-07-06 |
| CVE-2026-56263 json | Crawl4AI before 0.8.7 contains a stored cross-site scripting vulnerability in the monitor dashboard that renders crawl URLs a... | Not Provided | 2026-06-23 | 2026-06-25 |
| CVE-2026-56262 json | Crawl4AI before 0.8.7 contains an authentication bypass vulnerability in the monitor router endpoints that allows unauthentic... | Not Provided | 2026-06-24 | 2026-06-26 |
| CVE-2026-56261 json | Crawl4AI before 0.8.7 contains a server-side request forgery (SSRF) vulnerability in the Docker API server's /crawl/job and /... | Not Provided | 2026-07-10 | 2026-07-13 |
| CVE-2026-56258 json | Crawl4AI before 0.8.8 contains an arbitrary file write vulnerability in the screenshot and PDF endpoints that allows unauthen... | Not Provided | 2026-06-23 | 2026-06-25 |
| CVE-2026-53755 json | Crawl4AI is an open-source LLM friendly web crawler & scraper. Prior to 0.8.9, the Docker API server applied its SSRF destina... | Not Provided | 2026-06-23 | 2026-06-29 |
| CVE-2026-53754 json | Crawl4AI is an open-source LLM friendly web crawler & scraper. Prior to 0.8.8, the Docker API server's SSRF protection (valid... | Not Provided | 2026-06-23 | 2026-06-29 |
| CVE-2026-53753 json | Crawl4AI is an open-source LLM friendly web crawler & scraper. Prior to 0.8.7, the _safe_eval_expression() function in the co... | Not Provided | 2026-06-23 | 2026-06-29 |