pkg:npm/@cloudflare/workers-oauth-provider

2 total CVEs

✅ Check your installed version

All known vulnerabilities

  • CVE-2025-4144@cloudflare/workers-oauth-provider PKCE bypass via downgrade attack
    from 0, < 0.0.5
  • CVE-2025-4143@cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint
    from 0, < 0.0.5