Overview · lexiforest/curl_cffi · GitHub

Security

No security policy detected

This project has not set up a SECURITY.md file yet.

Report a vulnerability

Redirect-based SSRF leading to internal network access in curl_cffi (with TLS impersonation bypass)
GHSA-qw2m-4pqf-rmpp published Apr 3, 2026 by lexiforest

High
curl_cffi bundles a version of libcurl affected by High Severity vulnerability
GHSA-3vpc-4p9p-47hc published Oct 22, 2024 by lexiforest

High

Learn more about advisories related to lexiforest/curl_cffi in the GitHub Advisory Database