VYPR

Curl Cffi

by Lexiforest

Source repositories

CVEs (1)

  • CVE-2026-33752HigApr 6, 2026
    risk 0.49cvss 8.6epss 0.00

    curl_cffi is the a Python binding for curl. Prior to 0.15.0, curl_cffi does not restrict requests to internal IP ranges, and follows redirects automatically via the underlying libcurl. Because of this, an attacker-controlled URL can redirect requests to internal services such as…