VulnerableCode Package Details - pkg:pypi/chatterbot@0.7.2

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:pypi/chatterbot@0.7.2

Essentials
History (1)

purl	pkg:pypi/chatterbot@0.7.2

Next non-vulnerable version	1.2.11
Latest non-vulnerable version	1.2.11
Risk

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-stzz-prj7-wyer Aliases: CVE-2026-23842 GHSA-v4w8-49pv-mf72	ChatterBot is a machine learning, conversational dialog engine for creating chat bots. ChatterBot versions up to 1.2.10 are vulnerable to a denial-of-service condition caused by improper database session and connection pool management. Concurrent invocations of the get_response() method can exhaust the underlying SQLAlchemy connection pool, resulting in persistent service unavailability and requiring a manual restart to recover. Version 1.2.11 fixes the issue.	1.2.11 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-06-12T20:49:03.117584+00:00	GitLab Importer	Affected by	VCID-stzz-prj7-wyer	https://gitlab.com/gitlab-org/advisories-community/-/blob/main/pypi/chatterbot/CVE-2026-23842.yml	38.6.0