parse-server vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2022-36079Highparse-server: Parse Server vulnerable to brute force guessing of user sensitive data via search patternsCVE-2022-31112Highparse-server: Protected fields exposed via LiveQueryCVE-2022-31089Highparse-server: Invalid file request can crash serverCVE-2022-31083Highparse-server: Authentication bypass vulnerability in Apple Game Center auth adapter CVE-2022-24901Highparse-server: Authentication bypass and denial of service (DoS) vulnerabilities in Apple Game Center auth adapter CVE-2022-24760Criticalparse-server: Command injection in Parse Server through prototype pollutionCVE-2021-41109Highparse-server: LiveQuery publishes user session tokens in parse-serverGHSA-593V-WCQX-HQ2WCriticalparse-server: Incorrect version tags linked to external repositoryCVE-2021-39187Highparse-server: Parse Server crashes with query parameterCVE-2021-39138Mediumparse-server: parse-server new anonymous user session acts as if it's created with passwordCVE-2020-26288Lowparse-server: Parse Server stores password in plain textCVE-2020-15270Mediumparse-server: receiving subscription objects with deleted sessionCVE-2020-15126Mediumparse-server: GraphQL: Security breach on Viewer queryCVE-2020-5251Highparse-server: Information disclosure in parse-serverCVE-2019-1020013Mediumparse-server: Sensitive Data Exposure in parse-serverCVE-2019-1020012Highparse-server: Parse Server before v3.4.1 vulnerable to Denial of Service

Stop the waste.
Protect your environment with Kodem.