3 matches found
Gerapy has unspecified vulnerabilities
Gerapy is a distributed crawler management framework based on Scrapy, Scrapyd, Django and Vue.js. A security vulnerability exists in Gerapy v 0.9.7, which stems from an access control vulnerability that can be caused by the spider parameter in the projectconfigure function. No details of the...
Gerapy Authentication Remote Command Execution Vulnerability
Gerapy is a crawler framework based on the Scrapy Scrapyd Scrapyd Client Scrapyd API Django. Gerapy authenticates remote command execution vulnerabilities, which can be exploited by attackers to gain control of the server...
Remote Code Execution (RCE)
Scrapyd's default configuration is vulnerable to remote code execution RCE. This is because the default is to expose a port on all interfaces, which exposes the system to RCE attacks...