Auth0 Next.js SDK has Improper Validation of Query Parameters

5.7 / 10

MEDIUM

CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N

Description

The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. Versions 4.9.0 through 4.12.1 contain an input-validation flaw in the returnTo parameter, which could allow attackers to inject unintended OAuth query parameters into the Auth0 authorization request. Successful exploitation may result in tokens being issued with unintended parameters. This issue is fixed in version 4.13.0.

Basic Information

ID CVE-2025-67716

Source GitHub_M

Published Dec 11, 2025 at 00:21

Affected Product

Vendor auth0

Product nextjs-auth0

Version >= 4.9.0, < 4.13.0

Affected Versions auth0 nextjs-auth0 >= 4.9.0, < 4.13.0

CWE Classification

CWE-184

References

{
    "lastseen": "",
    "description": "The Auth0 Next.js SDK is a library for implementing user authentication in Next.js applications. Versions 4.9.0 through 4.12.1 contain an input-validation flaw in the returnTo parameter, which could allow attackers to inject unintended OAuth query parameters into the Auth0 authorization request. Successful exploitation may result in tokens being issued with unintended parameters. This issue is fixed in version 4.13.0.",
    "published": "2025-12-11T00:21:27.687Z",
    "modified": "2025-12-11T00:21:27.687Z",
    "type": "cve",
    "title": "Auth0 Next.js SDK has Improper Validation of Query Parameters",
    "source": "GitHub_M",
    "references": "https://github.com/auth0/nextjs-auth0/security/advisories/GHSA-mr6f-h57v-rpj5\nhttps://github.com/auth0/nextjs-auth0/commit/35eb321de3345ccf23e8c0d6f66c9f2f2f57d26c",
    "id": "CVE-2025-67716",
    "bulletinFamily": "",
    "cwe": [
        "CWE-184"
    ],
    "cvelist": null,
    "sourceData": "auth0 nextjs-auth0 >= 4.9.0, < 4.13.0",
    "sourceHref": "",
    "cvss": {
        "score": 5.7,
        "severity": "MEDIUM",
        "vector": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "nextjs-auth0",
    "version": ">= 4.9.0, < 4.13.0",
    "vendor": "auth0",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Auth0 Next.js SDK has Improper Validation of Query Parameters_CVE-2025-67716