Authentication for Next.js
latest non vulnerable version
6 years ago
latest version published
21 days ago
Known vulnerabilities in the next-auth package. This does not include vulnerabilities belonging to this package’s dependencies.Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
next-auth is an Authentication for Next.js
Affected versions of this package are vulnerable to Improper Authorization by obtaining an issued JWT from an interrupted OAuth sign-in flow. An attacker can manually override the
How to fix Improper Authorization?