pkg:npm/@cloudflare/workers-oauth-provider
2 total CVEs
✅ Check your installed version
All known vulnerabilities
—CVE-2025-4144@cloudflare/workers-oauth-provider PKCE bypass via downgrade attack from 0, < 0.0.5
—CVE-2025-4143@cloudflare/workers-oauth-provider missing validation of redirect_uri on authorize endpoint from 0, < 0.0.5