Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

OSV
OSVadded 2 days ago6 views

ROOT-APP-PYPI-CVE-2026-47265 CVE-2026-47265 in rootio-aiohttp - Patched by Root

Root has patched CVE-2026-47265 in the rootio-aiohttp package for Root:PyPI. Multiple fixed versions available...

8.7CVSS5.2AI score0.0015EPSS
Exploits0
OSV
OSVadded 2026/06/05 3:48 p.m.5 views

OESA-2026-2562 python-aiohttp security update

Async http client/server framework asyncio. Security Fixes: Most applications using this function will be doing so with the user's own data, so this is unlikely to affect many applications.CVE-2026-34993 If a developer uses the cookies parameter on a per-request basis then sensitive data might be...

8.7CVSS5.5AI score0.0015EPSS
Exploits0References3
Wolfi
Wolfiadded 2026/06/04 7:48 p.m.17 views

CVE-2026-47265 vulnerabilities

Vulnerabilities for packages: dask-kubernetes, open-webui, checkov, airflow, kubeflow-katib...

8.7CVSS5.8AI score0.0015EPSS
Exploits0
Chainguard
Chainguardadded 2026/06/04 7:17 p.m.12 views

CVE-2026-47265 vulnerabilities

Vulnerabilities for packages: request-1276, dagster-fips, awx, dagster, gitlab-cng, vllm-cuda-13.2, py3-vllm-cuda-13.0, dask-kubernetes-fips, tritonserver-backend-vllm-cuda-13.0, datahub-ingestion, opal, open-webui, checkov, py3-vllm-cuda-12.9, gitlab-cng-fips, nemo, py3-vllm-cuda-12.4, airflow,...

8.7CVSS5.8AI score0.0015EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2026/06/04 12:9 a.m.15 views

CVE-2026-47265

A flaw was found in AIOHTTP, an asynchronous HTTP client/server framework for asyncio and Python. This vulnerability allows a remote attacker to potentially gain access to sensitive information. When a developer uses the cookies parameter on a per-request basis, cookies are sent after following a...

8.7CVSS5.7AI score0.0015EPSS
Exploits0References5
vulnersOsv
vulnersOsvadded 2026/06/03 9:34 p.m.9 views

01os (>=0.0.1 <=0.0.14), 0b1-protocol (>=0.1.0 <=0.1.3) +41558 more potentially affected by CVE-2026-47265 via aiohttp (>=3.0.0b0 <=3.13.5)

aiohttp PYPI version =3.0.0b0, =0.0.1, =0.1.0, =0.1.0, =0.2.0, =0.1.0, =1.0.0, =0.1.0, =0.1.0, =1.0.0, =0.1.0, =0.1.1, =0.1.2, =0.1.3 - 1942pyc =7.0.1 - 1claw-crewai-tools =0.1.0 and more Source cves: CVE-2026-47265 Source advisory: SNYK:PYTHON-AIOHTTP-17146580...

8.7CVSS5.4AI score0.0015EPSS
Exploits0
Circl
Circladded 2026/06/02 8:44 p.m.7 views

CVE-2026-47265

creationtimestamp| type| source ---|---|--- 2026-06-02 20:44:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mndhkudytl24 2026-06-03 23:40:58+00:00| seen| https://gist.github.com/alon710/9df1d7e2f4cb5ed041eded527313ebbc...

8.7CVSS5.7AI score0.0015EPSS
Exploits0References2
CVE
CVEadded 2026/06/02 6:32 p.m.70 views

CVE-2026-47265

AIOHTTP prior to 3.14.0 is vulnerable: cookies provided via the cookies parameter on per-request calls are sent after following a cross-origin redirect, which may leak sensitive data if an attacker can control the redirect. Version 3.14.0 patches the issue. As a workaround, using a Cookie header ...

8.7CVSS5.8AI score0.0015EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder