Vulnerability Database

296,213

Total vulnerabilities in the database

x402 SDK vulnerable in outdated versions in resource servers for builders

Impact

There is a security vulnerability in outdated versions of the x402 SDK. This does not directly affect users' keys, smart contracts, or funds.

This primarily impacts builders working on resource servers.

Patches

Please update to the following package versions:

x402 >= 0.5.2
x402-next >= 0.5.2
x402-express >= 0.5.2
x402-hono >= 0.5.2

Published: Aug 20, 2025
Updated: Aug 21, 2025
GHSA: GHSA-3j63-5h8p-gf7c
Severity: High
Exploit:

No technical information available.

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
x402	-	0.5.2
x402-next	-	0.5.2
x402-express	-	0.5.2
x402-hono	-	0.5.2

https://github.com/coinbase/x402/security/advisories/GHSA-3j63-5h8p-gf7c