GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
8 advisories
AIOHTTP vulnerable to denial of service through large payloads
Moderate
CVE-2025-69228
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP vulnerable to DoS when bypassing asserts
Moderate
CVE-2025-69227
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP vulnerable to brute-force leak of internal static file path components
Low
CVE-2025-69226
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP has unicode match groups in regexes for ASCII protocol elements
Low
CVE-2025-69225
was published
for
aiohttp
(pip)
Jan 5, 2026
AIOHTTP's unicode processing of header values could cause parsing discrepancies
Low
CVE-2025-69224
was published
for
aiohttp
(pip)
Jan 5, 2026
react-pdf vulnerable to arbitrary JavaScript execution upon opening a malicious PDF with PDF.js
High
CVE-2024-34342
was published
for
react-pdf
(npm)
May 7, 2024
PDF.js vulnerable to arbitrary JavaScript execution upon opening a malicious PDF
High
CVE-2024-4367
was published
for
pdfjs-dist
(npm)
May 7, 2024
DoS vulnerability for apps with sockets enabled
High
CVE-2023-38504
was published
for
sails
(npm)
Jul 27, 2023
ProTip!
Advisories are also available from the
GraphQL API