Lucene search
Oauth2 Security Vulnerabilities - 2023
cve
All versions of @fastify/oauth2 used a statically generated state parameter at startup time and were used across all requests for all users. The purpose of the Oauth2 state parameter is to prevent Cross-Site-Request-Forgery attacks. As such, it should be unique per user and should be connected to t...
8.8CVSS
8.6AI Score
0.001EPSS
2023-07-04 05:15 PM
2457