VulnerableCode Package Details - pkg:pypi/gerapy@0.9.7

Search for packages

Vulnerability	Summary	Fixed by
VCID-ctdj-cvza-yucq Aliases: CVE-2021-32849 GHSA-756h-r2c9-qp5j PYSEC-2022-17	Gerapy is a distributed crawler management framework. Prior to version 0.9.9, an authenticated user could execute arbitrary commands. This issue is fixed in version 0.9.9. There are no known workarounds.	0.9.9 Affected by 0 other vulnerabilities.
VCID-juhh-bhbk-pffm Aliases: CVE-2021-43857 GHSA-9w7f-m4j4-j3xw PYSEC-2021-867	Gerapy is a distributed crawler management framework. Gerapy prior to version 0.9.8 is vulnerable to remote code execution, and this issue is patched in version 0.9.8.	0.9.8 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}
VCID-z7kw-15th-abf3 Aliases: CVE-2021-44597 GHSA-29vr-79w7-p649 PYSEC-2022-228	An Access Control vunerabiity exists in Gerapy v 0.9.7 via the spider parameter in project_configure function.	0.9.8 Affected by 1 other vulnerability. This version is affected by these other vulnerabilities: {{ fixed_by_vuln.vulnerability_id }}

Vulnerability

Summary

Fixed by

VCID-ctdj-cvza-yucq
Aliases:
CVE-2021-32849
GHSA-756h-r2c9-qp5j
PYSEC-2022-17

Gerapy is a distributed crawler management framework. Prior to version 0.9.9, an authenticated user could execute arbitrary commands. This issue is fixed in version 0.9.9. There are no known workarounds.

0.9.9
Affected by 0 other vulnerabilities.

VCID-juhh-bhbk-pffm
Aliases:
CVE-2021-43857
GHSA-9w7f-m4j4-j3xw
PYSEC-2021-867

Gerapy is a distributed crawler management framework. Gerapy prior to version 0.9.8 is vulnerable to remote code execution, and this issue is patched in version 0.9.8.

0.9.8
Affected by 1 other vulnerability.

VCID-z7kw-15th-abf3
Aliases:
CVE-2021-44597
GHSA-29vr-79w7-p649
PYSEC-2022-228

An Access Control vunerabiity exists in Gerapy v 0.9.7 via the spider parameter in project_configure function.

0.9.8
Affected by 1 other vulnerability.

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Vulnerability

Summary

Aliases

This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-05-31T09:44:05.441010+00:00	PyPI Importer	Affected by	VCID-z7kw-15th-abf3	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-05-31T09:43:40.498063+00:00	PyPI Importer	Affected by	VCID-ctdj-cvza-yucq	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-05-31T09:43:37.434385+00:00	PyPI Importer	Affected by	VCID-juhh-bhbk-pffm	https://osv-vulnerabilities.storage.googleapis.com/PyPI/all.zip	38.6.0
2026-05-30T20:57:20.600814+00:00	GitLab Importer	Affected by	VCID-z7kw-15th-abf3	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/gerapy/CVE-2021-44597.yml	38.6.0
2026-05-30T20:30:07.115118+00:00	Pypa Importer	Affected by	VCID-z7kw-15th-abf3	https://github.com/pypa/advisory-database/blob/main/vulns/gerapy/PYSEC-2022-228.yaml	38.6.0
2026-05-30T20:29:19.832736+00:00	Pypa Importer	Affected by	VCID-ctdj-cvza-yucq	https://github.com/pypa/advisory-database/blob/main/vulns/gerapy/PYSEC-2022-17.yaml	38.6.0
2026-05-30T20:29:13.851203+00:00	Pypa Importer	Affected by	VCID-juhh-bhbk-pffm	https://github.com/pypa/advisory-database/blob/main/vulns/gerapy/PYSEC-2021-867.yaml	38.6.0