Critical severityNVD Advisory· Published Feb 12, 2026· Updated Feb 12, 2026
Crawl4AI < 0.8.0 Docker API Unauthenticated Remote Code Execution via Hooks Parameter
CVE-2026-26216
Description
Crawl4AI versions prior to 0.8.0 contain a remote code execution vulnerability in the Docker API deployment. The /crawl endpoint accepts a hooks parameter containing Python code that is executed using exec(). The __import__ builtin was included in the allowed builtins, allowing unauthenticated remote attackers to import arbitrary modules and execute system commands. Successful exploitation allows full server compromise, including arbitrary command execution, file read and write access, sensitive data exfiltration, and lateral movement within internal networks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
Crawl4AIPyPI | < 0.8.0 | 0.8.0 |
Affected products
2- unclecode/Crawl4AIv5Range: 0
Patches
Vulnerability mechanics
References
8- github.com/advisories/GHSA-5882-5rx9-xgxpghsaADVISORY
- github.com/unclecode/crawl4ai/security/advisories/GHSA-5882-5rx9-xgxpghsavendor-advisorypatchWEB
- nvd.nist.gov/vuln/detail/CVE-2026-26216ghsaADVISORY
- www.vulncheck.com/advisories/crawl4ai-docker-api-unauthenticated-remote-code-execution-via-hooks-parameterghsathird-party-advisoryWEB
- github.com/pypa/advisory-database/tree/main/vulns/crawl4ai/PYSEC-2026-33.yamlghsaWEB
- github.com/unclecode/crawl4ai/blob/main/docs/blog/release-v0.8.0.mdghsarelease-notesWEB
- github.com/unclecode/crawl4ai/blob/release/v0.8.0/docs/blog/release-v0.8.0.mdghsaWEB
- github.com/unclecode/crawl4ai/blob/release/v0.8.0/docs/migration/v0.8.0-upgrade-guide.mdghsaWEB
News mentions
0No linked articles in our index yet.