CVE-2025-47241

Published May 3rd, 2025

View on NVD ↗

CVSS v3

MEDIUM

CVSS v2

N/A

Affected

PROJECT

Description

In browser-use (aka Browser Use) before 0.1.45, URL parsing of allowed_domains is mishandled because userinfo can be placed in the authority component.

browser-use/browser-use

🌐 Make websites accessible for AI agents. Automate tasks online with ease.

GitHub

101K