CVE-2025-57818

Name of the Vulnerable Software and Affected Versions: Firecrawl versions prior to 2.0.1

Description: Firecrawl is a tool that converts websites into LLM-ready markdown or structured data. A server-side request forgery (SSRF) vulnerability exists in the webhook functionality of Firecrawl. Authenticated users could configure a webhook to an internal URL and send POST requests with arbitrary headers, potentially allowing access to internal systems.

Recommendations: Upgrade to version 2.0.1 or later. If upgrading is not possible, isolate Firecrawl from any sensitive internal systems.