Lucene search
China National Vulnerability DatabaseCNVD-2022-91654HistorySep 30, 2022 - 12:00 a.m.
NextAuth.js authorization issue vulnerability
2022-09-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
0.002 Low
EPSS
Percentile
58.6%
NextAuth.js is an authentication for Next.js. NextAuth.js version v3.0.2 is vulnerable to authorization issues, which can be exploited by attackers to perform unauthorized actions.
| CPE | Name | Operator | Version |
|---|---|---|---|
| next.js nextauth.js | lt | 3.0.2 |
Related
github
github
Upstash Adapter missing token verification
2022-09-30 05:31:32
prion
prion
Design/Logic Flaw
2022-09-28 21:15:00
veracode
veracode
Authentication Bypass
2022-09-29 03:31:51
osv
osv
Upstash Adapter missing token verification
2022-09-30 05:31:32
CVE-2022-39263
2022-09-28 21:15:14
cvelist
cvelist
CVE-2022-39263 NextAuth.js Upstash Adapter missing token verification
2022-09-28 21:05:09
cve
cve
CVE-2022-39263
2022-09-28 21:15:14
nvd
nvd
CVE-2022-39263
2022-09-28 21:15:14