Package impact
npm / keycloak-connect
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-7474 | critical | 9.8 | 9.8 | 9y ago | keycloak-connect and keycloak-js improperly handle invalid tokens | |||
| CVE-2022-2237 | unknown | — | — | 3y ago | keycloak-connect contains Open redirect vulnerability in the Node.js adapter | |||
| CVE-2019-10157 | unknown | — | — | 7y ago | Forced Logout in keycloak-connect |