Vulnerabilities > Fastify > Oauth2
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2023-07-04 | CVE-2023-31999 | Cross-Site Request Forgery (CSRF) vulnerability in Fastify Oauth2 All versions of @fastify/oauth2 used a statically generated state parameter at startup time and were used across all requests for all users. | 8.8 |