Количество 2
Количество 2
CVE-2024-51752
The AuthKit library for Next.js provides convenient helpers for authentication and session management using WorkOS & AuthKit with Next.js. In affected versions refresh tokens are logged to the console when the disabled by default `debug` flag, is enabled. This issue has been patched in version 0.13.2 and all users are advised to upgrade. There are no known workarounds for this vulnerability.
GHSA-5wmg-9cvh-qw25
@workos-inc/authkit-nextjs refresh tokens are logged when the debug flag is enabled
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-51752 The AuthKit library for Next.js provides convenient helpers for authentication and session management using WorkOS & AuthKit with Next.js. In affected versions refresh tokens are logged to the console when the disabled by default `debug` flag, is enabled. This issue has been patched in version 0.13.2 and all users are advised to upgrade. There are no known workarounds for this vulnerability. | CVSS3: 5.5 | 0% Низкий | больше 1 года назад |
| GHSA-5wmg-9cvh-qw25 @workos-inc/authkit-nextjs refresh tokens are logged when the debug flag is enabled | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу