Vuln
·
Scope
Home
Packages
KEV
Critical
Insights
Jobs
Pricing
EN
中
Loading…
npm/better-auth — 6 CVEs · VulnScope
pkg:npm/
better-auth
6 total CVEs
HIGH
3
✅ Check your installed version
Check
All known vulnerabilities
HIGH
8.6
CVE-2025-61928
Better Auth: Unauthenticated API key creation through api-key plugin
from 0, < 1.3.26
HIGH
7.6
CVE-2026-45337
Better Auth: Device authorization approve and deny accept any authenticated session while the user code is pending
>= 1.6.0, < 1.6.11
HIGH
7.3
CVE-2026-45364
Better Auth: Rate limiter keys IPv6 addresses individually and is bypassable via prefix rotation
from 0, < 1.4.17
—
CVE-2025-53535
Better Auth Open Redirect Vulnerability in originCheck Middleware Affects Multiple Routes
from 0, < 1.2.10
—
Beter Auth has an Open Redirect via Scheme-Less Callback Parameter
from 0, < 1.1.20
—
Better Auth has an Open Redirect Vulnerability in Verify Email Endpoint
from 0, < 1.1.6
CVE-2025-27143
CVE-2024-56734