Workos Security Vulnerabilities (CVEs)
Track 2 security vulnerabilities affecting Workos products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
The AuthKit library for Next.js versions 2.11.0 and below fails to apply anti-caching headers to authenticated responses. This allows session tokens t...
Nov 21, 2025The AuthKit library for Next.js logs refresh tokens to the console when the debug flag is enabled, potentially exposing sensitive authentication crede...
Nov 5, 2024Why Monitor Workos Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 2+ known vulnerabilities affecting Workos products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Workos packages in under 60 seconds. No agents required - completely agentless scanning that works across Workos deployments.
Free vulnerability database: Access detailed information about every Workos CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Workos CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
