pkg:npm/@node-oauth/oauth2-server
1 total CVEMEDIUM1
✅ Check your installed version
All known vulnerabilities
MEDIUM5.9CVE-2026-41213@node-oauth/oauth2-server: PKCE code_verifier ABNF not enforced in token exchange allows brute-force redemption of intercepted authorization codes from 0, < 5.3.0