Latest version: v2.12.0
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| PVE-2024-70412 | 70412 |
When utilizing the built-in HTTP proxy downloader middleware in Scrap… |
|
- | - |
| CVE-2024-1892 | 71643 |
A Regular Expression Denial of Service (ReDoS) vulnerability exists i… |
|
- | - |
| CVE-2024-3574 | 71642 |
In scrapy/scrapy, an issue was identified where the Authorization hea… |
|
- | - |
| CVE-2024-3572 | 71641 |
The scrapy/scrapy project is vulnerable to XML External Entity (XXE) … |
|
- | - |
| PVE-2024-68088 | 68088 |
Scrapy's redirect middleware improperly retains the `Authorization` h… |
|
- | X.Y |
| PVE-2023-55177 | 55177 |
Scrapy 1.8.3 and 2.6.2 fix a security issue: Credentials of one proxy… |
|
- | - |
| CVE-2022-0577 | 46423 |
Scrapy versions 1.8.2 and 2.6.0 include a fix for CVE-2022-0577: Expo… |
|
MEDIUM | 6.5 |
| CVE-2021-41125 | 42057 |
Scrapy versions 1.8.1 and 2.5.1 include a fix for CVE-2021-41125: If … |
|
MEDIUM | 6.5 |
| PVE-2024-99758 | 66736 |
Affected versions earlier 1.8.4 and 2.11.1 of Scrapy are vulnerable … |
|
- | X.Y |
| PVE-2024-99757 | 66738 |
Affected versions earlier 1.8.4 and 2.11.1 of Scrapy are vulnerable … |
|
- | X.Y |
| PVE-2023-55200 | 55200 |
Scrapy 1.8.2 and 2.6.0 include a security fix: Responses from domain … |
|
- | - |
| PVE-2024-71987 | 71987 |
When using system proxy settings specific to HTTP (http://) or HTTPS … |
|
- | - |
| PVE-2024-71988 | 71988 |
Scrapy previously followed redirects regardless of the URL protocol, … |
|
- | - |
| CVE-2024-1968 | 71640 |
In scrapy/scrapy, an issue was identified where the Authorization hea… |
|
- | - |
| CVE-2017-14158 | 54672 |
Scrapy is vulnerable to CVE-2017-14158: Scrapy allows remote attacker… |
|
HIGH | 7.5 |
| PVE-2024-99877 | 65543 |
Scrapy, a web crawling framework, is susceptible to an XML External E… |
|
- | - |