gerapy is a Distributed Crawler Management Framework Based on Scrapy, Scrapyd, Scrapyd-Client, Scrapyd-API, Django and Vue.js.
Affected versions of this package are vulnerable to Command Injection. The input being passed to Popen, via the
project_configure endpoint, isn’t being sanitized.
gerapy to version 0.9.3 or higher.