All 1 CVE vulnerabilities found in node-oauth2-server, with AI-generated Chinese analysis, references, and POCs.
Vendor: node-oauth
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-41213 | @node-oauth/oauth2-server: PKCE code_verifier ABNF not enforced in token exchange allows brute-force redemption of intercepted authorization codes CWE-307 | 5.9 | Medium | 2026-04-23 |
All 1 known CVE vulnerabilities affecting node-oauth2-server with full Chinese analysis, references, and POCs where available.