Lucene search
+L

4 matches found

vulnersOsv
vulnersOsv
added 2022/05/24 10:3 p.m.6 views

@app-box/web (=1.0.0), @comet/cms-site (>=3.0.0-canary.160.0 <=4.0.0-canary.1049.0) +33 more potentially affected by CVE-2022-29214 via next-auth (>=0.0.0-manual.83c4ebd1 <=3.29.10)

next-auth NPM version =0.0.0-manual.83c4ebd1, =3.0.0-canary.160.0, =2.0.1-canary.24.0, =1.0.99-0.next12, =0.1.0, =0.46.0, =0.30.0, =0.3.0, =0.10.0, =0.2.0, =0.3.0, =0.3.0, =0.4.0, =0.1.0, =0.1.3 and more Source cves: CVE-2022-29214 Source advisory: OSV:GHSA-Q2MX-J4X2-2H74...

6.1CVSS6.3AI score0.00626EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2022/05/24 10:3 p.m.5 views

@5minds/processcube_docflow (>=1.3.2-develop-01bdfb-m4jp5iuo <=2.1.0-test-fb53a9-mispuplg), @adamjoelfraser/auth-drizzle (=1.0.0) +494 more potentially affected by CVE-2022-29214 via next-auth (>=4.10.3 <=4.2.1)

next-auth NPM version =4.10.3, =1.3.2-develop-01bdfb-m4jp5iuo, =0.1.20, =3.0.5, =3.0.3, =1.1.18, =1.1.63, =1.1.7, =1.0.77, =1.0.1, =0.1.0, =1.1.77 - @authjs-web3-providers/core =0.5.0 and more Source cves: CVE-2022-29214 Source advisory: OSV:GHSA-Q2MX-J4X2-2H74...

6.1CVSS6.3AI score0.00626EPSS
Exploits0
Circl
Circl
added 2022/05/21 7:47 a.m.9 views

CVE-2022-29214

creationtimestamp| type| source ---|---|--- 2022-05-21 07:47:57+00:00| seen| https://t.me/cibsecurity/43139...

6.1CVSS6AI score0.00626EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/05/20 11:45 p.m.7 views

CVE-2022-29214 URL Redirection to Untrusted Site ('Open Redirect') in next-auth

NextAuth.js next-auth is am open source authentication solution for Next.js applications. Prior to versions 3.29.3 and 4.3.3, an open redirect vulnerability is present when the developer is implementing an OAuth 1 provider. Versions 3.29.3 and 4.3.3 contain a patch for this issue. The maintainers...

6.1CVSS6.3AI score0.00626EPSS
Exploits0References2
Rows per page
Query Builder