4 Total advisories
4 Vulnerabilities
0 Malware
Vulnerabilities
HIGH 8.1
CVE-2026-42349
Clerk has an authorization bypass when combining organization, billing, or reverification checks
CRITICAL 9.1
CVE-2026-41248
Official Clerk JavaScript SDKs: Middleware-based route protection bypass
HIGH 7.5
CVE-2025-53548
@clerk/backend Performs Insufficient Verification of Data Authenticity
CRITICAL 9.0
CVE-2024-22206
@clerk/nextjs auth() and getAuth() methods vulnerable to insecure direct object reference (IDOR)
Ready to move
Start Securing
Free, no credit card | First findings in minutes