npm/@clerk/nuxt — 3 CVEs

CRITICAL9.1CVE-2026-41248Official Clerk JavaScript SDKs: Middleware-based route protection bypass

>= 1.1.0, < 1.13.28

HIGH8.1CVE-2026-42349Clerk has an authorization bypass when combining organization, billing, or reverification checks

>= 1.0.0, < 1.13.29

HIGH7.5CVE-2025-53548@clerk/backend Performs Insufficient Verification of Data Authenticity

>= 1.7.0, < 1.7.5

pkg:npm/@clerk/nuxt