Vulnerabilities > Auth0 > Express Openid Connect > Medium

DATE CVE VULNERABILITY TITLE RISK
2022-03-31 CVE-2022-24794 Open Redirect vulnerability in Auth0 Express Openid Connect
Express OpenID Connect is an Express JS middleware implementing sign on for Express web apps using OpenID Connect.
network
auth0 CWE-601
5.8
2021-12-09 CVE-2021-41246 Session Fixation vulnerability in Auth0 Express Openid Connect
Express OpenID Connect is express JS middleware implementing sign on for Express web apps using OpenID Connect.
network
auth0 CWE-384
6.8