x402 SDK vulnerable in outdated versions in resource servers for builders (GHSA-3j63-5h8p-gf7c) 3
- Severity:
- High
Description
There is a security vulnerability in outdated versions of the x402 SDK. This does not directly affect users’ keys, smart contracts, or funds.
This primarily impacts builders working on resource servers.
Recommendation
Update the x402 package to the latest compatible version. Followings are version details:
- Affected version(s): < 0.5.2
- Patched version(s): 0.5.2
References
Related Issues
- x402 SDK vulnerable in outdated versions in resource servers for builders (GHSA-3j63-5h8p-gf7c) 2 - Vulnerability
- jQuery UI vulnerable to XSS when refreshing a checkboxradio with an HTML-like initial text label - CVE-2022-31160
- Opening a malicious website while running a Nuxt dev server could allow read-only access to code - CVE-2025-24361
- vue-i18n has cross-site scripting vulnerability with prototype pollution (GHSA-9r9m-ffp6-9x4v) 4 - CVE-2024-52809
- Tags:
- npm
- x402
Anything's wrong? Let us know Last updated on August 20, 2025