Analyzed
1 day
ago.
based on code collected
1 day
ago.
Major Versions
click and drag to zoom
Security Vulnerabilities for Version:
Severities:
Type
|
Identifier
|
Related Record |
Severity
|
Date Published
|
Description | Versions Affected |
|---|---|---|---|---|---|
| CVE-2020-26938 | High | Aug 29, 2022 | In oauth2-server (aka node-oauth2-server) through 3.1.1, the value of the redirect_uri parameter received during the authorization and token request is more... |
3.1.1, 3.1.0, 3.0.2, 3.0.1, 3.0.0, 2.4.1, 2.4.0, 2.3.0, 2.2.2, 0.0.1
|
|
| CVE-2017-18924 | High | Oct 04, 2020 | oauth2-server (aka node-oauth2-server) through 3.1.1 implements OAuth 2.0 without PKCE. It does not prevent authorization code injection. This is simil more... |
3.1.1, 3.1.0, 3.0.2, 3.0.1, 3.0.0, 2.4.1, 2.4.0, 2.3.0, 2.2.2, 0.0.1
|
