Vulnerabilidades em workos
8 resultadosCVE-2024-29901MEDIUM@workos-inc/authkit-nextjs session replay vulnerabilityEPSS 0.7%CVE-2025-55009HIGHAuthKit: Sensitive auth data rendered in HTMLEPSS 0.3%CVE-2025-55008HIGHAuthKit React Router: Sensitive auth data rendered in HTMLEPSS 0.3%CVE-2025-64762HIGHauthkit-nextjs may let session cookies be cached in CDNsEPSS 0.3%CVE-2025-23017MEDIUMWorkOS Hosted AuthKit before 2025-01-07 allows a password authentication MFA bypass (by enrolling a new authentication factor) when the attaEPSS 0.3%CVE-2024-51752LOWRefresh tokens are logged when the debug flag is enabled in @workos-inc/authkit-nextjsEPSS 0.2%CVE-2024-51753LOWRefresh tokens are logged when the debug flag is enabled in @workos-inc/authkit-remixEPSS 0.2%CVE-2026-42565MEDIUM@workos/authkit-session: Open Redirect via state-derived redirect targetEPSS 0.2%