GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
7 advisories
AIOHTTP leaks Cookie and Proxy-Authorization headers on cross-origin redirect
Low
CVE-2026-34518
was published
for
aiohttp
(pip)
Apr 1, 2026
AIOHTTP has late size enforcement for non-file multipart fields causes memory DoS
Low
CVE-2026-34517
was published
for
aiohttp
(pip)
Apr 1, 2026
AIOHTTP Vulnerable to Cookie Parser Warning Storm
Low
CVE-2025-69230
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP vulnerable to brute-force leak of internal static file path components
Low
CVE-2025-69226
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP has unicode match groups in regexes for ASCII protocol elements
Low
CVE-2025-69225
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP's unicode processing of header values could cause parsing discrepancies
Low
CVE-2025-69224
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP is vulnerable to HTTP Request/Response Smuggling through incorrect parsing of chunked trailer sections
Low
CVE-2025-53643
was published
for
aiohttp
(pip)
Jul 14, 2025
ProTip!
Advisories are also available from the
GraphQL API