Vulnerabilities > Oauth2 Server Project
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2020-10-04 | CVE-2017-18924 | Code Injection vulnerability in Oauth2-Server Project Oauth2-Server oauth2-server (aka node-oauth2-server) through 3.1.1 implements OAuth 2.0 without PKCE. | 7.5 |