A fix was pushed into the master branch but not yet published.

express-jwt vulnerabilities

Known vulnerabilities in the express-jwt package. This does not include vulnerabilities belonging to this package’s dependencies.

Vulnerability	Vulnerable Version
H Authorization Bypass	<6.0.0

Vulnerability

Vulnerable Version

Authorization Bypass

<6.0.0

Package versions

1 - 73 of 73 Results

version	published	direct vulnerabilities
8.5.1	9 Dec, 2024	0 C 0 H 0 M 0 L
8.5.0	9 Dec, 2024	0 C 0 H 0 M 0 L
8.4.1	6 Feb, 2023	0 C 0 H 0 M 0 L
8.4.0	27 Jan, 2023	0 C 0 H 0 M 0 L
8.3.0	4 Jan, 2023	0 C 0 H 0 M 0 L
8.2.1	26 Dec, 2022	0 C 0 H 0 M 0 L
8.2.0	22 Dec, 2022	0 C 0 H 0 M 0 L
8.1.0	22 Dec, 2022	0 C 0 H 0 M 0 L
8.0.0	22 Dec, 2022	0 C 0 H 0 M 0 L
7.7.8	24 Jun, 2024	0 C 0 H 0 M 0 L
7.7.7	24 Oct, 2022	0 C 0 H 0 M 0 L
7.7.6	24 Oct, 2022	0 C 0 H 0 M 0 L
7.7.5	31 May, 2022	0 C 0 H 0 M 0 L
7.7.4	31 May, 2022	0 C 0 H 0 M 0 L
7.7.3	30 May, 2022	0 C 0 H 0 M 0 L
7.7.2	19 May, 2022	0 C 0 H 0 M 0 L
7.7.1	13 May, 2022	0 C 0 H 0 M 0 L
7.7.0	6 May, 2022	0 C 0 H 0 M 0 L
7.6.2	2 May, 2022	0 C 0 H 0 M 0 L
7.6.1	2 May, 2022	0 C 0 H 0 M 0 L
7.6.0	2 May, 2022	0 C 0 H 0 M 0 L
7.5.2	27 Apr, 2022	0 C 0 H 0 M 0 L
7.5.1	27 Apr, 2022	0 C 0 H 0 M 0 L
7.5.0	25 Apr, 2022	0 C 0 H 0 M 0 L
7.4.3	21 Apr, 2022	0 C 0 H 0 M 0 L
7.4.2	20 Apr, 2022	0 C 0 H 0 M 0 L
7.4.1	20 Apr, 2022	0 C 0 H 0 M 0 L
7.4.0	20 Apr, 2022	0 C 0 H 0 M 0 L
7.3.0	20 Apr, 2022	0 C 0 H 0 M 0 L
7.2.0	20 Apr, 2022	0 C 0 H 0 M 0 L
7.1.0	20 Apr, 2022	0 C 0 H 0 M 0 L
7.0.0	20 Apr, 2022	0 C 0 H 0 M 0 L
6.1.2	20 Apr, 2022	0 C 0 H 0 M 0 L
6.1.1	21 Feb, 2022	0 C 0 H 0 M 0 L
6.1.0	11 Aug, 2021	0 C 0 H 0 M 0 L
6.0.0	29 Jun, 2020	0 C 0 H 0 M 0 L
5.3.3	7 Apr, 2020	0 C 1 H 0 M 0 L
5.3.2	7 Apr, 2020	0 C 1 H 0 M 0 L
5.3.1	9 Mar, 2018	0 C 1 H 0 M 0 L
5.3.0	17 Apr, 2017	0 C 1 H 0 M 0 L
5.1.0	4 Oct, 2016	0 C 1 H 0 M 0 L
5.0.0	5 Sep, 2016	0 C 1 H 0 M 0 L
3.4.0	6 May, 2016	0 C 1 H 0 M 0 L
3.3.0	9 Nov, 2015	0 C 1 H 0 M 0 L
3.2.0	9 Nov, 2015	0 C 1 H 0 M 0 L
3.1.0	9 Sep, 2015	0 C 1 H 0 M 0 L
3.0.1	15 May, 2015	0 C 1 H 0 M 0 L
3.0.0	11 Apr, 2015	0 C 1 H 0 M 0 L
2.1.0	16 Mar, 2015	0 C 1 H 0 M 0 L
2.0.1	11 Mar, 2015	0 C 1 H 0 M 0 L
2.0.0	6 Mar, 2015	0 C 1 H 0 M 0 L
1.4.0	6 Mar, 2015	0 C 1 H 0 M 0 L
1.3.1	6 Mar, 2015	0 C 1 H 0 M 0 L
1.3.0	3 Mar, 2015	0 C 1 H 0 M 0 L
1.2.0	3 Mar, 2015	0 C 1 H 0 M 0 L
1.1.0	2 Mar, 2015	0 C 1 H 0 M 0 L
1.0.0	15 Jan, 2015	0 C 1 H 0 M 0 L
0.6.2	5 Jan, 2015	0 C 1 H 0 M 0 L
0.6.1	3 Jan, 2015	0 C 1 H 0 M 0 L
0.5.1	26 Nov, 2014	0 C 1 H 0 M 0 L
0.5.0	16 Nov, 2014	0 C 1 H 0 M 0 L
0.4.0	1 Oct, 2014	0 C 1 H 0 M 0 L
0.3.2	5 Sep, 2014	0 C 1 H 0 M 0 L
0.3.1	16 Jul, 2014	0 C 1 H 0 M 0 L
0.3.0	16 Jul, 2014	0 C 1 H 0 M 0 L
0.2.2	14 Jul, 2014	0 C 1 H 0 M 0 L
0.2.1	3 May, 2014	0 C 1 H 0 M 0 L
0.2.0	4 Mar, 2014	0 C 1 H 0 M 0 L
0.1.4	3 May, 2014	0 C 1 H 0 M 0 L
0.1.3	14 Apr, 2014	0 C 1 H 0 M 0 L
0.1.2	15 Feb, 2014	0 C 1 H 0 M 0 L
0.1.1	3 Feb, 2014	0 C 1 H 0 M 0 L
0.1.0	23 Oct, 2013	0 C 1 H 0 M 0 L

express-jwt vulnerabilities

JWT authentication middleware.

latest version

latest non vulnerable version

first published

latest version published

licenses detected

Direct Vulnerabilities

How to fix?

Package versions