CVE-2026-41481

Name of the Vulnerable Software and Affected Versions langchain-text-splitters versions prior to 1.1.2

Description In the HTMLHeaderTextSplitter.split text from url() function, the initial URL is validated using validate safe url(), but the subsequent fetch is performed via requests.get() with redirects enabled. Since redirect targets are not revalidated, a URL pointing to an attacker-controlled server can redirect to internal, localhost, or cloud metadata endpoints, bypassing Server-Side Request Forgery (SSRF) protections. SSRF is a flaw that allows an attacker to induce the server-side application to make requests to an unintended location. The response body is parsed and returned as Document objects. If the application exposes these contents back to the requester, sensitive data from internal endpoints could be leaked.

Recommendations Update langchain-text-splitters to version 1.1.2.