| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-6176 | Brotli decompression bomb DoS in scrapy/scrapy | scrapy | scrapy/scrapy | 高危 | - | 2025-10-31 00:00:21 | Deep Dive |
| CVE-2024-1968 | Authorization Header Leakage in scrapy/scrapy on Scheme Change Redirects | scrapy | scrapy/scrapy | - | - | 2024-05-20 08:03:43 | Deep Dive |
| CVE-2024-3574 | Authorization Header Leak During Cross-Domain Redirect in scrapy/scrapy | scrapy | scrapy/scrapy | 高危 | - | 2024-04-16 00:00:15 | Deep Dive |
| CVE-2024-3572 | XML External Entity (XXE) Vulnerability in scrapy/scrapy | scrapy | scrapy/scrapy | 高危 | - | 2024-04-16 00:00:14 | Deep Dive |
| CVE-2024-1892 | ReDoS Vulnerability in scrapy/scrapy's XMLFeedSpider | scrapy | scrapy/scrapy | 高危 | - | 2024-02-28 00:00:14 | Deep Dive |
| CVE-2022-0577 | Exposure of Sensitive Information to an Unauthorized Actor in scrapy/scrapy | scrapy | scrapy/scrapy | 中危 | - | 2022-03-02 04:05:10 | Deep Dive |
| CVE-2021-41125 | HTTP authentication credential leak to target websites in scrapy | scrapy | scrapy | Medium | 5.7 | 2021-10-06 17:15:13 | Deep Dive |
| CVE-2021-41124 | Splash authentication credentials potentially leaked to target websites in scrapy-splash | scrapy-plugins | scrapy-splash | High | 7.4 | 2021-10-05 21:00:10 | Deep Dive |