Vulnerability	Vulnerable Version
C Open Redirect better-auth is a The most comprehensive authentication library for TypeScript. Affected versions of this package are vulnerable to Open Redirect due to insufficient validation of the `callbackURL` parameter in the `trustedOrigins` configuration which allows attackers to exploit this vulnerability by crafting specially formatted URLs that bypass the `trustedOrigins` protection. How to fix Open Redirect? Upgrade `better-auth` to version 1.1.21 or higher.	<1.1.21
M Open Redirect better-auth is a The most comprehensive authentication library for TypeScript. Affected versions of this package are vulnerable to Open Redirect due to improper validation of the `callbackURL parameter in the email verification endpoint and other endpoints that accept a callback URL. How to fix Open Redirect? Upgrade `better-auth` to version 1.1.20 or higher.	<1.1.20

Open Redirect

better-auth is a The most comprehensive authentication library for TypeScript.

Affected versions of this package are vulnerable to Open Redirect due to insufficient validation of the callbackURL parameter in the trustedOrigins configuration which allows attackers to exploit this vulnerability by crafting specially formatted URLs that bypass the trustedOrigins protection.

How to fix Open Redirect?

Upgrade better-auth to version 1.1.21 or higher.

<1.1.21

Open Redirect

better-auth is a The most comprehensive authentication library for TypeScript.

Affected versions of this package are vulnerable to Open Redirect due to improper validation of the `callbackURL parameter in the email verification endpoint and other endpoints that accept a callback URL.

How to fix Open Redirect?

Upgrade better-auth to version 1.1.20 or higher.

<1.1.20

Go back to all versions of this package