
aiohttp
pypi · Async http client/server framework (asyncio) · Repository · Package
Security Advisories for aiohttp in pypi
Low
3 months ago
AIOHTTP is vulnerable to HTTP Request/Response Smuggling through incorrect parsing of chunked trailer sections
pypi
aiohttp
Moderate
11 months ago
aiohttp allows request smuggling due to incorrect parsing of chunk extensions
pypi
aiohttp
Moderate
11 months ago
aiohttp has a memory leak when middleware is enabled when requesting a resource with a non-allowed method
pypi
aiohttp
Moderate
about 1 year ago
In aiohttp, compressed files as symlinks are not protected from path traversal
pypi
aiohttp
High
over 1 year ago
aiohttp vulnerable to Denial of Service when trying to parse malformed POST requests
pypi
aiohttp
Moderate
over 1 year ago
aiohttp Cross-site Scripting vulnerability on index pages for static file handling
pypi
aiohttp
Moderate
over 1 year ago
aiohttp's HTTP parser (the python one, not llhttp) still overly lenient about separators
pypi
aiohttp
Moderate
almost 2 years ago
aiohttp's ClientSession is vulnerable to CRLF injection via version
pypi
aiohttp
Moderate
almost 2 years ago
aiohttp's ClientSession is vulnerable to CRLF injection via method
pypi
aiohttp
Moderate
almost 2 years ago
aiohttp has vulnerable dependency that is vulnerable to request smuggling
pypi
aiohttp
Moderate
almost 2 years ago
AIOHTTP has problems in HTTP parser (the python one, not llhttp)
pypi
aiohttp
Low
almost 2 years ago
Aiohttp has inconsistent interpretation of `Content-Length` vs. `Transfer-Encoding` differing in C and Python fallbacks
pypi
aiohttp
Moderate
about 2 years ago
aiohttp.web.Application vulnerable to HTTP request smuggling via llhttp HTTP request parser
pypi
aiohttp
Low
over 4 years ago
`aiohttp` Open Redirect vulnerability (`normalize_path_middleware` middleware)
pypi
aiohttp