CVE-2025-53535 Information
Jul 08, 2025
cve
Description
Better Auth is an authentication and authorization library for TypeScript. An open redirect has been found in the originCheck middleware function which affects the following routes: /verify-email /reset-password/:token /delete-user/callback /magic-link/verify /oauth-proxy-callback. This vulnerability is fixed in 1.2.10.
Reference
https://github.com/better-auth/better-auth/security/advisories/GHSA-36rg-gfq2-3h56
Related CNNVD
CNNVD-202507-761 (Published: 2025-07-07)
Share on: