pkg:npm/@clerk/backend
3 total CVEsHIGH3
✅ Check your installed version
All known vulnerabilities
HIGH8.1CVE-2026-42349Clerk has an authorization bypass when combining organization, billing, or reverification checks >= 2.0.0, < 2.33.3
HIGH7.5CVE-2025-53548@clerk/backend Performs Insufficient Verification of Data Authenticity >= 2.0.0, < 2.4.0
HIGH7.4CVE-2026-34076Clerk: SSRF in the opt-in clerkFrontendApiProxy feature may leak secret keys to unintended host >= 3.0.0, < 3.2.3