CVE-2026-26216
CRITICALCrawl4AI < 0.8.0 - Unauthenticated Remote Code Execution via Docker API Hooks Parameter
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2026-26216. PoCs published by dwisiswant0.
AI-analyzed exploit summary The repository contains a functional exploit for CVE-2026-26216, demonstrating unauthenticated remote code execution in Crawl4AI via the Docker API `/crawl` endpoint by leveraging the `__import__` builtin in an `exec()` call. The exploit includes a detailed analysis, patch diffs, and a working Python script to confirm RCE.
Description
Crawl4AI versions prior to 0.8.0 contain a remote code execution vulnerability in the Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec(). The __import__ builtin was included in the allowed builtins, allowing unauthenticated remote attackers to import arbitrary modules and execute system commands. Successful exploitation allows full server compromise, including arbitrary command execution, file read and write access, sensitive data exfiltration, and lateral movement within internal networks.
Exploits (1)
The repository contains a functional exploit for CVE-2026-26216, demonstrating unauthenticated remote code execution in Crawl4AI via the Docker API `/crawl` endpoint by leveraging the `__import__` builtin in an `exec()` call. The exploit includes a detailed analysis, patch diffs, and a working Python script to confirm RCE.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H