Homepage

oidc-provider vulnerabilities

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

  • latest version

    9.5.1

  • latest non vulnerable version

    9.5.1

  • first published

    9 years ago

  • latest version published

    14 days ago

  • licenses detected

  • View oidc-provider package health on Snyk Advisor  (opens in a new tab)
    • Report a new vulnerability Found a mistake?

    Direct Vulnerabilities

    Known vulnerabilities in the oidc-provider package. This does not include vulnerabilities belonging to this package’s dependencies.

    How to fix?

    Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

    Fix for free
    VulnerabilityVulnerable Version
    • M
    Cross-site Scripting (XSS)

    <6.0.3

    Package versions

    357 VERSIONS IN TOTAL See all versions
    versionpublisheddirect vulnerabilities
    9.5.129 Aug, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.5.029 Aug, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.4.223 Aug, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.4.111 Aug, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.4.017 Jul, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.3.016 Jul, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.2.024 Jun, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.1.32 Jun, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.1.228 May, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L
    9.1.128 Apr, 2025
    • 0
      C
    • 0
      H
    • 0
      M
    • 0
      L