Data

Tools

Indexes

Applications

Experiments

Advisories

An open API service providing security vulnerability metadata for many open source software ecosystems.

npm

@clerk/nextjs

npm

Clerk SDK for NextJS

View on github.com · View on npmjs.org

Security Advisories for @clerk/nextjs in npm

High
about 1 month ago

Clerk has an authorization bypass when combining organization, billing, or reverification checks GSA_kwCzR0hTQS13MjRyLTUyNjYtOWMzY84ABV-G

npm @clerk/hono, @clerk/express, @clerk/fastify, @clerk/chrome-extension, @clerk/tanstack-react-start, @clerk/react-router, @clerk/expo, @clerk/clerk-expo, @clerk/nuxt, @clerk/astro, @clerk/vue, @clerk/react, @clerk/clerk-react, @clerk/clerk-js, @clerk/nextjs, @clerk/backend, @clerk/shared
Critical
about 2 months ago

Official Clerk JavaScript SDKs: Middleware-based route protection bypass GSA_kwCzR0hTQS12cXgyLWZneDItNXdxOc4ABVZF

npm @clerk/shared, @clerk/astro, @clerk/nuxt, @clerk/nextjs
High
11 months ago

@clerk/backend Performs Insufficient Verification of Data Authenticity GSA_kwCzR0hTQS05bXA0LTc3d2ctcnd4Oc4ABJ9w

npm @clerk/tanstack-react-start, @clerk/remix, @clerk/react-router, @clerk/nuxt, @clerk/nextjs, @clerk/fastify, @clerk/express, @clerk/astro, @clerk/backend
Critical
over 2 years ago

@clerk/nextjs auth() and getAuth() methods vulnerable to insecure direct object reference (IDOR) GSA_kwCzR0hTQS1xNnc1LWpnNXEtNDd2Z84AA4bF

npm @clerk/nextjs

Filter by Severity

High 2 Critical 2