VYPR
Low severityGHSA Advisory· Published Jun 10, 2026· Updated Jun 10, 2026

CVE-2026-46497

CVE-2026-46497

Description

Crawlee is a web scraping and browser automation library. From version 1.0.0 to before version 1.7.0, Crawlee is vulnerable to SSRF via sitemap-derived URLs. This issue has been patched in version 1.7.0.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected packages

Versions sourced from the GitHub Security Advisory.

PackageAffected versionsPatched versions
crawleePyPI
>= 1.0.0, < 1.7.01.7.0

Affected products

1

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.