Package impact
PyPI / scrapy
| CVE | Severity | CVSS | Risk | Published | Description | Impact |
|---|---|---|---|---|---|---|
| CVE-2025-6176 | high | — | 8.0 | 7mo ago | Important: brotli security update | |
| CVE-2017-14158 | high | 7.5 | 7.5 | 9y ago | Scrapy 1.4 allows remote attackers to cause a denial of service (memory consumption) via large files because arbitrarily many files are read into memory, which is especially problematic if the files … | |
| CVE-2021-41125 | medium | — | 5.5 | 5y ago | Scrapy is a high-level web crawling and scraping framework for Python. If you use `HttpAuthMiddleware` (i.e. the `http_user` and `http_pass` spider attributes) for HTTP authentication, all requests w… |