Vulnerabilities > Fastify > Oauth2

DATE CVE VULNERABILITY TITLE RISK
2023-07-04 CVE-2023-31999 Cross-Site Request Forgery (CSRF) vulnerability in Fastify Oauth2
All versions of @fastify/oauth2 used a statically generated state parameter at startup time and were used across all requests for all users.
network
low complexity
fastify CWE-352
8.8