“Web scraping considered dangerous”: Exploiting the telnet service in scrapy < 1.5.2

Remote Code Execution (RCE)

SSRF->Telnet->RCE chain in Scrapy, found by @alertot