Browse Security Advisories
Security Advisories for https://github.com/parse-community/parse-server in npm Clear Filters
High
10 months ago
Parse Server's custom object ID allows to acquire role privileges
npm
parse-server
Critical
about 1 year ago
ZDI-CAN-23894: Parse Server literalizeRegexPart SQL Injection Authentication Bypass Vulnerability
npm
parse-server
Critical
over 1 year ago
Server crashes on invalid Cloud Function or Cloud Job name
npm
parse-server
Critical
over 1 year ago
ZDI-CAN-19105: Parse Server literalizeRegexPart SQL Injection
npm
parse-server
High
almost 2 years ago
Parse Server may crash when uploading file without extension
npm
parse-server
High
almost 2 years ago
Trigger `beforeFind` not invoked in internal query pipeline when fetching pointer
npm
parse-server
Critical
about 2 years ago
Parse Server vulnerable to remote code execution via MongoDB BSON parser through prototype pollution
npm
parse-server
Moderate
about 2 years ago
Phishing attack vulnerability by uploading malicious HTML file
npm
parse-server
High
over 2 years ago
Parse Server option `masterKeyIps` vulnerability to IP spoofing
npm
parse-server
High
over 2 years ago
Parse Server is vulnerable to Prototype Pollution via Cloud Code Webhooks
npm
parse-server
High
over 2 years ago
Parse Server vulnerable to Prototype Pollution via Cloud Code Webhooks or Cloud Code Triggers
npm
parse-server
Critical
over 2 years ago
Remote code execution via MongoDB BSON parser through prototype pollution
npm
parse-server
High
almost 3 years ago
parse-server crashes when receiving file download request with invalid byte range
npm
parse-server
Low
almost 3 years ago
parse-server auth adapter app ID validation can be circumvented
npm
parse-server
Moderate
almost 3 years ago
parse-server's session object properties can be updated by foreign user if object ID is known
npm
parse-server
High
almost 3 years ago
Parse Server vulnerable to brute force guessing of user sensitive data via search patterns
npm
parse-server
High
about 3 years ago
Authentication bypass vulnerability in Apple Game Center auth adapter
npm
parse-server
High
about 3 years ago
Authentication bypass and denial of service (DoS) vulnerabilities in Apple Game Center auth adapter
npm
parse-server
Critical
over 3 years ago
Command injection in Parse Server through prototype pollution
npm
parse-server
Moderate
almost 4 years ago
parse-server new anonymous user session acts as if it's created with password
npm
parse-server
Filter by Severity
Filter by Ecosystem
maven
6,662
packagist
5,355
pypi
4,831
npm
4,188
go
2,795
nuget
1,700
cargo
1,065
rubygems
918
hex
37
swift
35
actions
32
pub
10
Filter by Package
directus
38
parse-server
33
electron
28
next
26
@openzeppelin/contracts-upgradeable
22
@openzeppelin/contracts
21
tinymce
16
sequelize
16
undici
15
ghost
15
flowise
15
ckeditor4
15
joplin
14
swagger-ui
14
angular
14
nodebb
13
strapi
13
vite
13
marked
12
vm2
12
handlebars
11
nocodb
11
TinyMCE
11
matrix-js-sdk
11
bootstrap
11
tinymce/tinymce
11
uptime-kuma
10
bootstrap
9
org.webjars:bootstrap
9
@strapi/strapi
9
systeminformation
9
@evershop/evershop
9
next-auth
9
bootstrap
9
matrix-appservice-irc
9
serve
9
matrix-react-sdk
9
twbs/bootstrap
9
validator
8
steal
8
dompurify
8
org.webjars.npm:jquery
8
express-cart
8
jquery-rails
8
url-parse
8
tar
8
node-forge
8
editor.md
8
jquery
8
@haxtheweb/haxcms-nodejs
8
jsrsasign
8
npm
8
shescape
8
elliptic
8
urijs
8
snyk-broker
7
@directus/api
7
vega
7
total.js
7
n8n
7
jQuery.UI.Combined
7
bootstrap.sass
7
mongoose
7
sanitize-html
7
jquery-ui-rails
7
jquery-ui
7
bootstrap-sass
7
bootstrap-sass
7
org.webjars.npm:jquery-ui
7
jQuery
7
lodash
7
hermes-engine
7
hapi
7
rsshub
6
@strapi/plugin-users-permissions
6
prismjs
6
axios
6
@sveltejs/kit
6
mattermost-desktop
6
tarteaucitronjs
6
parse-url
6
safe-eval
6
openpgp
6
aaptjs
6
katex
5
public
5
express
5
aws-cdk-lib
5
ws
5
xlsx
5
ua-parser-js
5
@keystone-6/core
5
froala-editor
5
total4
5
better-auth
5
rendertron
5
ejs
5
dojo
5
yarn
5
vditor
5
@lobehub/chat
5
sweetalert2
5
mermaid
5
lodash-es
5
fastify
5
trix
5
@saltcorn/server
5
keystone
5
generator-jhipster
5
passport-wsfed-saml2
5
mysql2
5
xml-crypto
4
hummus
4
engine.io
4
jspdf
4
safer-eval
4
jquery-validation
4
auth0-lock
4
remarkable
4
nuxt
4
vue-i18n
4
hono
4
convert-svg-core
4
follow-redirects
4
simple-markdown
4
erxes
4
auth0-js
4
awsiotsdk
4
@apollo/gateway
4
muhammara
4
multer
4
moment
4
apollo-server-core
4
@auth0/nextjs-auth0
4
jsonwebtoken
4
fast-xml-parser
4
aws-iot-device-sdk-v2
4
materialize-css
4
yui
4
valine
4
glance
4
mongo-express
4
pnpm
4
qs
4
vega-functions
4
@backstage/plugin-scaffolder-backend
4
@node-saml/node-saml
4
ecstatic
4
meshcentral
4
code-server
4
petite-vue-i18n
4
realms-shim
4
ses
4
apostrophe
4
@intlify/vue-i18n-core
4
snyk
4
mongosh
4
software.amazon.awssdk.iotdevicesdk:aws-iot-device-sdk
4
simple-git
4
subtext
3
llhttp
3
jointjs
3
node-ipc
3
blamer
3
@strapi/plugin-content-manager
3
express-fileupload
3
send
3
@janhq/core
3
node-jose
3
slpjs
3
node-red-dashboard
3
slp-validate
3
@backstage/techdocs-common
3
notevil
3
codecov
3
moodle/moodle
3
openmct
3
ftp-srv
3
webpack-dev-server
3
raneto
3
tough-cookie
3
dojox
3
typeorm
3
convict
3
org.webjars.npm:xlsx
3
bin-links
3
socket.io
3
ckeditor/ckeditor
3
locutus
3
angular-expressions
3
jose-node-esm-runtime
3
socket.io-file
3
mxgraph
3
mathjs
3
@intlify/core
3
@materializecss/materialize
3
object-path
3
parsel
3
@soketi/soketi
3
@ckeditor/ckeditor5-markdown-gfm
3
Filter by Repository
https://github.com/directus/directus
40
https://github.com/parse-community/parse-server
33
https://github.com/electron/electron
27
https://github.com/strapi/strapi
25
https://github.com/vercel/next.js
22
https://github.com/OpenZeppelin/openzeppelin-contracts
21
https://github.com/backstage/backstage
18
https://github.com/tinymce/tinymce
16
https://github.com/sequelize/sequelize
16
https://github.com/nodejs/undici
15
https://github.com/ckeditor/ckeditor4
14
https://github.com/laurent22/joplin
13
https://github.com/FlowiseAI/Flowise
13
https://github.com/TryGhost/Ghost
13
https://github.com/vitejs/vite
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/patriksimek/vm2
12
https://github.com/NodeBB/NodeBB
12
https://github.com/matrix-org/matrix-js-sdk
11
https://github.com/nocodb/nocodb
11
https://github.com/keystonejs/keystone
11
https://github.com/nextauthjs/next-auth
10
https://github.com/louislam/uptime-kuma
10
https://github.com/jquery/jquery
10
https://github.com/sebhildebrandt/systeminformation
9
https://github.com/matrix-org/matrix-appservice-irc
9
https://github.com/matrix-org/matrix-react-sdk
9
https://github.com/haxtheweb/issues
9
https://github.com/evershopcommerce/evershop
9
https://github.com/indutny/elliptic
8
https://github.com/pandao/editor.md
8
https://github.com/vega/vega
8
https://github.com/apollographql/apollo-server
8
https://github.com/stealjs/steal
8
https://github.com/kjur/jsrsasign
8
https://github.com/digitalbazaar/forge
8
https://github.com/cure53/DOMPurify
8
https://github.com/ericcornelissen/shescape
8
https://github.com/twbs/bootstrap
7
https://github.com/lodash/lodash
7
https://github.com/aws/aws-cdk
7
https://github.com/n8n-io/n8n
7
https://github.com/saltcorn/saltcorn
7
https://github.com/unshiftio/url-parse
7
https://github.com/nuxt/nuxt
7
https://github.com/npm/node-tar
6
https://github.com/facebook/hermes
6
https://github.com/DIYgod/RSSHub
6
https://github.com/sveltejs/kit
6
https://github.com/axios/axios
6
https://github.com/totaljs/framework
6
https://github.com/ionicabizau/parse-url
6
https://github.com/jquery/jquery-ui
6
https://github.com/eclipse-theia/theia
6
https://github.com/shenzhim/aaptjs
6
https://github.com/markedjs/marked
6
https://github.com/openpgpjs/openpgpjs
6
https://github.com/panva/jose
6
https://github.com/auth0/passport-wsfed-saml2
5
https://github.com/Automattic/mongoose
5
https://github.com/jhipster/generator-jhipster
5
https://github.com/GoogleChrome/rendertron
5
https://github.com/ckeditor/ckeditor5
5
https://github.com/sidorares/node-mysql2
5
https://github.com/hacksparrow/safe-eval
5
https://github.com/sweetalert2/sweetalert2
5
https://github.com/BlackFan/client-side-prototype-pollution
5
https://github.com/gatsbyjs/gatsby
5
https://github.com/cloudflare/workers-sdk
5
https://github.com/basecamp/trix
5
https://github.com/KaTeX/KaTeX
5
https://github.com/better-auth/better-auth
5
https://github.com/apostrophecms/sanitize-html
5
https://github.com/npm/cli
5
https://github.com/AmauriC/tarteaucitron.js
5
https://github.com/PrismJS/prism
5
https://github.com/fastify/fastify
5
https://github.com/faisalman/ua-parser-js
5
https://github.com/handlebars-lang/handlebars.js
5
https://github.com/lobehub/lobe-chat
5
https://github.com/mrvautin/expressCart
4
https://github.com/intlify/vue-i18n
4
https://github.com/erxes/erxes
4
https://github.com/node-opcua/node-opcua
4
https://github.com/auth0/node-jsonwebtoken
4
https://github.com/angular/angular.js
4
https://github.com/xCss/Valine
4
https://github.com/aws/aws-iot-device-sdk-java-v2
4
https://github.com/pnpm/pnpm
4
https://github.com/medialize/URI.js
4
https://github.com/Dogfalo/materialize
4
https://github.com/honojs/hono
4
https://github.com/follow-redirects/follow-redirects
4
https://github.com/expressjs/multer
4
https://github.com/yarnpkg/yarn
4
https://github.com/auth0/lock
4
https://github.com/getsentry/sentry-javascript
4
https://github.com/vendure-ecommerce/vendure
4
https://github.com/ofirdagan/cross-domain-local-storage
4
https://github.com/auth0/nextjs-auth0
4
https://github.com/medialize/uri.js
4
https://github.com/node-saml/node-saml
4
https://github.com/expressjs/express
4
https://github.com/npm/npm
4
https://github.com/mde/ejs
4
https://github.com/socketio/engine.io
4
https://github.com/balderdashy/sails
4
https://github.com/Ylianst/MeshCentral
4
https://github.com/hapijs/hapi
4
https://github.com/NaturalIntelligence/fast-xml-parser
4
https://github.com/websockets/ws
4
https://github.com/steveukx/git-js
4
https://github.com/jquery-validation/jquery-validation
4
https://github.com/jonschlinkert/remarkable
4
https://github.com/libxmljs/libxmljs
3
https://github.com/peerigon/angular-expressions
3
https://github.com/zeit/next.js
3
https://github.com/lukeed/dset
3
https://github.com/nodemailer/nodemailer
3
https://github.com/mariocasciaro/object-path
3
https://github.com/dojo/dojox
3
https://github.com/mafintosh/tar-fs
3
https://github.com/chjj/marked
3
https://github.com/skoranga/node-dns-sync
3
https://github.com/feathersjs-ecosystem/feathers-sequelize
3
https://github.com/ua-parser/uap-core
3
https://github.com/salesforce/tough-cookie
3
https://github.com/ag-grid/ag-grid
3
https://github.com/mozilla/node-convict
3
https://github.com/froala/wysiwyg-editor
3
https://github.com/endojs/endo
3
https://github.com/hapijs/subtext
3
https://github.com/mozilla/pdf.js
3
https://github.com/snyk/cli
3
https://github.com/snowflakedb/snowflake-connector-nodejs
3
https://github.com/agnaistic/agnai
3
https://github.com/node-fetch/node-fetch
3
https://github.com/RIAEvangelist/node-ipc
3
https://github.com/mongodb/js-bson
3
https://github.com/zestedesavoir/zmarkdown
3
https://github.com/micromatch/braces
3
https://github.com/jasonraimondi/url-to-png
3
https://github.com/dwisiswant0/advisory
3
https://github.com/koajs/koa
3
https://github.com/transloadit/uppy
3
https://github.com/MrRio/jsPDF
3
https://github.com/docsifyjs/docsify
3
https://github.com/ChainSafe/lodestar
3
https://github.com/vriteio/vrite
3
https://github.com/mermaid-js/mermaid
3
https://github.com/dojo/dojo
3
https://github.com/chimurai/http-proxy-middleware
3
https://github.com/beerpwn/CVE
3
https://github.com/nasa/openmct
3
https://github.com/cisco/node-jose
3
https://github.com/vanessa219/vditor
3
https://github.com/socketio/socket.io-parser
3
https://github.com/kujirahand/nadesiko3
3
https://github.com/udecode/plate
3
https://github.com/HackAllSec/CVEs
3
https://github.com/OpenZeppelin/openzeppelin-contracts-upgradeable
3
https://github.com/highcharts/highcharts
3
https://github.com/postcss/postcss
3
https://github.com/neocotic/convert-svg
3
https://github.com/gruntjs/grunt
3
https://github.com/infor-design/enterprise-ng
3
https://github.com/withastro/astro
3
https://github.com/node-saml/xml-crypto
3
https://github.com/remix-run/react-router
3
https://github.com/moment/moment
3
https://github.com/socketio/socket.io
3
https://github.com/koush/scrypted
3
https://github.com/immerjs/immer
3
https://github.com/yahoo/serialize-javascript
3
https://github.com/apollographql/federation
3
https://github.com/xmldom/xmldom
3
https://github.com/fastify/fastify-multipart
3
https://github.com/simpleledger/slpjs
3
https://github.com/webpack/loader-utils
3
https://github.com/renovatebot/renovate
3
https://github.com/thlorenz/browserify-shim
3
https://github.com/josdejong/mathjs
3
https://github.com/clientIO/joint
3
https://github.com/YMFE/yapi
3
https://github.com/mongo-express/mongo-express
3
https://github.com/soketi/soketi
3
https://github.com/webpack/webpack-dev-server
3
https://github.com/typeorm/typeorm
3
https://github.com/jfhbrook/node-ecstatic
3
https://github.com/actions/toolkit
3
https://github.com/nodejs/llhttp
3
https://github.com/facebook/react
3
https://github.com/adaltas/node-mixme
3
https://github.com/manuelstofer/json-pointer
3
https://github.com/jarofghosts/glance
3
https://github.com/Marak/colors.js
3
https://github.com/apostrophecms/apostrophe
3
https://github.com/jwadhams/json-logic-js
2
https://github.com/julianhille/MuhammaraJS
2