Known Vulnerabilities for products from Parseplatform
Listed below are 14 of the newest known vulnerabilities associated with the vendor "Parseplatform".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-34784 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6... | Not Provided | 2026-03-31 | 2026-04-01 |
| CVE-2026-34224 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6... | Not Provided | 2026-03-31 | 2026-04-01 |
| CVE-2026-34215 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to versions 8.6... | Not Provided | 2026-03-31 | 2026-04-01 |
| CVE-2022-24901 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-05-04 | 2022-05-12 |
| CVE-2022-24760 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 10 - CRITICAL | 2022-03-12 | 2022-07-01 |
| CVE-2021-41109 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version 4.10... | 7.5 - HIGH | 2021-09-30 | 2021-10-08 |
| CVE-2021-39187 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to version 4.10... | 7.5 - HIGH | 2021-09-02 | 2022-08-05 |
| CVE-2021-39138 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Developers can use th... | 6.5 - MEDIUM | 2021-08-19 | 2022-08-12 |
| CVE-2020-26288 | Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. It is an npm package ... | 6.5 - MEDIUM | 2020-12-30 | 2021-01-04 |
| CVE-2020-15270 | Parse Server (npm package parse-server) broadcasts events to all clients without checking if the session token is valid. This... | 4.3 - MEDIUM | 2020-10-22 | 2020-10-30 |
| CVE-2020-15126 | In parser-server from version 3.5.0 and before 4.3.0, an authenticated user using the viewer GraphQL query can by pass all re... | 6.5 - MEDIUM | 2020-07-22 | 2020-07-28 |
| CVE-2020-5251 | In parser-server before version 4.1.0, you can fetch all the users objects, by using regex in the NoSQL query. Using the NoSQ... | 5.3 - MEDIUM | 2020-03-04 | 2020-03-06 |
| CVE-2019-1020013 | parse-server before 3.6.0 allows account enumeration. | 5.3 - MEDIUM | 2019-07-29 | 2020-08-24 |
| CVE-2019-1020012 | parse-server before 3.4.1 allows DoS after any POST to a volatile class. | 7.5 - HIGH | 2019-07-29 | 2019-08-02 |
Known software with vulnerabilities from Parseplatform
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Parseplatform | Parse-server | - |