Browse Security Advisories
Security Advisories for https://github.com/parse-community/parse-server Clear Filters
High
about 1 year ago
Parse Server's custom object ID allows to acquire role privileges
npm
parse-server
Critical
over 1 year ago
ZDI-CAN-23894: Parse Server literalizeRegexPart SQL Injection Authentication Bypass Vulnerability
npm
parse-server
Critical
over 1 year ago
Server crashes on invalid Cloud Function or Cloud Job name
npm
parse-server
Critical
over 1 year ago
ZDI-CAN-19105: Parse Server literalizeRegexPart SQL Injection
npm
parse-server
High
about 2 years ago
Parse Server may crash when uploading file without extension
npm
parse-server
High
about 2 years ago
Trigger `beforeFind` not invoked in internal query pipeline when fetching pointer
npm
parse-server
Critical
over 2 years ago
Parse Server vulnerable to remote code execution via MongoDB BSON parser through prototype pollution
npm
parse-server
Moderate
over 2 years ago
Phishing attack vulnerability by uploading malicious HTML file
npm
parse-server
High
over 2 years ago
Parse Server option `masterKeyIps` vulnerability to IP spoofing
npm
parse-server
High
almost 3 years ago
Parse Server is vulnerable to Prototype Pollution via Cloud Code Webhooks
npm
parse-server
High
almost 3 years ago
Parse Server vulnerable to Prototype Pollution via Cloud Code Webhooks or Cloud Code Triggers
npm
parse-server
Critical
almost 3 years ago
Remote code execution via MongoDB BSON parser through prototype pollution
npm
parse-server
High
about 3 years ago
parse-server crashes when receiving file download request with invalid byte range
npm
parse-server
Low
about 3 years ago
parse-server auth adapter app ID validation can be circumvented
npm
parse-server
Moderate
about 3 years ago
parse-server's session object properties can be updated by foreign user if object ID is known
npm
parse-server
High
about 3 years ago
Parse Server vulnerable to brute force guessing of user sensitive data via search patterns
npm
parse-server
High
over 3 years ago
Authentication bypass vulnerability in Apple Game Center auth adapter
npm
parse-server
High
over 3 years ago
Authentication bypass and denial of service (DoS) vulnerabilities in Apple Game Center auth adapter
npm
parse-server
Critical
over 3 years ago
Command injection in Parse Server through prototype pollution
npm
parse-server
Moderate
about 4 years ago
parse-server new anonymous user session acts as if it's created with password
npm
parse-server
Filter by Severity
Filter by Ecosystem
maven
6,840
packagist
5,349
pypi
4,868
npm
4,363
go
2,934
nuget
1,508
cargo
1,111
rubygems
904
hex
40
actions
39
swift
35
pub
10
Filter by Package
tensorflow
430
moodle/moodle
425
tensorflow-cpu
410
tensorflow-gpu
399
magento/community-edition
285
Microsoft.ChakraCore
247
org.jenkins-ci.main:jenkins-core
242
typo3/cms
178
com.liferay.portal:release.portal.bom
155
github.com/mattermost/mattermost/server/v8
136
org.apache.tomcat:tomcat
134
magento/project-community-edition
122
pimcore/pimcore
120
dolibarr/dolibarr
117
com.liferay.portal:release.dxp.bom
117
typo3/cms-core
107
phpmyadmin/phpmyadmin
107
microweber/microweber
103
drupal/core
98
Django
94
silverstripe/framework
91
librenms/librenms
86
apache-airflow
86
drupal/drupal
77
thorsten/phpmyfaq
74
com.fasterxml.jackson.core:jackson-databind
69
github.com/mattermost/mattermost-server
68
github.com/usememos/memos
68
concrete5/concrete5
67
salt
65
shopware/platform
63
ansible
63
apache-superset
61
symfony/symfony
60
actionpack
59
github.com/grafana/grafana
56
org.apache.struts:struts2-core
54
Plone
54
craftcms/cms
53
mlflow
53
github.com/rancher/rancher
50
org.keycloak:keycloak-core
50
shopware/core
50
mautic/core
48
nova
48
github.com/hashicorp/vault
48
baserproject/basercms
47
nokogiri
46
gradio
44
org.keycloak:keycloak-services
44
vyper
44
org.xwiki.platform:xwiki-platform-oldcore
43
matrix-synapse
43
org.elasticsearch:elasticsearch
43
nilsteampassnet/teampass
42
rdiffweb
42
k8s.io/kubernetes
42
mantisbt/mantisbt
41
django
41
plone
41
showdoc/showdoc
41
org.apache.tomcat.embed:tomcat-embed-core
40
intelliants/subrion
40
froxlor/froxlor
40
picklescan
39
directus
39
net.mingsoft:ms-mcms
38
snipe/snipe-it
38
com.thoughtworks.xstream:xstream
37
github.com/mattermost/mattermost-server/v6
37
com.jfinal:jfinal
36
github.com/argoproj/argo-cd/v2
36
rack
35
moin
35
io.undertow:undertow-core
35
github.com/answerdev/answer
34
org.jenkins-ci.plugins:script-security
33
parse-server
33
keystone
32
gogs.io/gogs
32
zendframework/zendframework1
32
opencv-contrib-python
31
github.com/cilium/cilium
31
shopware/shopware
31
opencv-python
31
github.com/hashicorp/nomad
31
flowise
31
getgrav/grav
30
github.com/argoproj/argo-cd
30
Pillow
29
github.com/hashicorp/consul
29
next
29
github.com/docker/docker
29
electron
28
pillow
28
mediawiki/core
28
org.apache.solr:solr-core
28
vllm
28
org.springframework.security:spring-security-core
27
org.opencms:opencms-core
27
prestashop/prestashop
27
contao/core-bundle
27
DotNetNuke.Core
27
centreon/centreon
27
org.apache.tomcat:tomcat-catalina
26
open-webui
25
openssl-src
25
org.eclipse.jetty:jetty-server
25
github.com/traefik/traefik/v2
25
rubygems-update
25
pocketmine/pocketmine-mp
25
pyload-ng
24
getkirby/cms
24
surrealdb
24
org.keycloak:keycloak-parent
24
puppet
23
grumpydictator/firefly-iii
23
simplesamlphp/simplesamlphp
23
laravel/framework
23
remdex/livehelperchat
23
contao/contao
22
org.apache.openmeetings:openmeetings-parent
22
ckb
22
tribalsystems/zenario
22
org.bouncycastle:bcprov-jdk15on
22
zendframework/zendframework
22
activerecord
22
deno
22
Microsoft.AspNetCore.App.Runtime.win-x86
21
github.com/goharbor/harbor
21
Microsoft.AspNetCore.App.Runtime.win-x64
21
org.apache.nifi:nifi
21
@openzeppelin/contracts-upgradeable
21
wasmtime
21
helm.sh/helm/v3
21
@openzeppelin/contracts
21
glance
21
org.xwiki.platform:xwiki-platform-web-templates
20
typo3/cms-backend
20
code.gitea.io/gitea
20
cockpit-hq/cockpit
20
aim
20
org.cloudfoundry.identity:cloudfoundry-identity-server
20
ethyca-fides
20
github.com/ethereum/go-ethereum
20
funadmin/funadmin
20
Microsoft.AspNetCore.App.Runtime.win-arm
19
topthink/framework
19
transformers
19
github.com/zitadel/zitadel
19
langchain
19
neutron
19
Microsoft.AspNetCore.App.Runtime.linux-x64
18
mindsdb
18
genix/cms
18
com.vaadin:vaadin-bom
18
golang.org/x/net
18
mercurial
18
cobbler
18
Microsoft.AspNetCore.App.Runtime.win-arm64
18
forkcms/forkcms
18
org.apache.jspwiki:jspwiki-main
18
org.springframework:spring-core
18
github.com/openfga/openfga
17
OctoPrint
17
openmage/magento-lts
17
cakephp/cakephp
17
calibreweb
17
francoisjacquet/rosariosis
17
Microsoft.AspNetCore.App.Runtime.linux-musl-arm64
17
ezsystems/ezpublish-kernel
17
Microsoft.AspNetCore.App.Runtime.linux-musl-x64
17
Microsoft.AspNetCore.App.Runtime.osx-x64
17
opencart/opencart
17
Microsoft.AspNetCore.App.Runtime.linux-arm64
17
notebook
17
yetiforce/yetiforce-crm
17
cryptography
17
Microsoft.AspNetCore.App.Runtime.linux-arm
17
com.liferay.portal:com.liferay.portal.impl
17
org.apache.geode:geode-core
17
github.com/traefik/traefik/v3
17
org.apache.inlong:manager-pojo
17
Microsoft.NetCore.App.Runtime.win-x64
16
tinymce
16
ghost
16
Microsoft.NetCore.App.Runtime.win-arm64
16
PaddlePaddle
16
october/system
16
sequelize
16
phpbb/phpbb
16
rusqlite
16
Microsoft.NetCore.App.Runtime.win-arm
16
org.apache.activemq:activemq-client
16
paddlepaddle
16
lollms
16
org.apache.ranger:ranger
16
org.apache.tomcat:tomcat-coyote
16
org.apache.dubbo:dubbo
16
vite
16
Filter by Repository
https://github.com/tensorflow/tensorflow
433
https://github.com/moodle/moodle
250
https://github.com/xwiki/xwiki-platform
222
https://github.com/chakra-core/ChakraCore
214
https://github.com/jenkinsci/jenkins
178
https://github.com/liferay/liferay-portal
166
https://github.com/django/django
119
https://github.com/apache/tomcat
117
https://github.com/pimcore/pimcore
116
https://github.com/apache/airflow
104
https://github.com/TYPO3/typo3
94
https://github.com/keycloak/keycloak
90
https://github.com/microweber/microweber
90
https://github.com/librenms/librenms
77
https://github.com/rails/rails
70
https://github.com/FasterXML/jackson-databind
70
https://github.com/thorsten/phpmyfaq
69
https://github.com/silverstripe/silverstripe-framework
68
https://github.com/usememos/memos
68
https://github.com/kubernetes/kubernetes
66
https://github.com/symfony/symfony
64
https://github.com/Dolibarr/dolibarr
60
https://github.com/mattermost/mattermost
59
https://github.com/ansible/ansible
59
https://github.com/python-pillow/Pillow
52
https://github.com/spring-projects/spring-framework
51
https://github.com/argoproj/argo-cd
50
https://github.com/grafana/grafana
47
https://github.com/apache/struts
47
https://github.com/rancher/rancher
46
https://github.com/mautic/mautic
46
https://github.com/phpmyadmin/phpmyadmin
45
https://github.com/concretecms/concretecms
44
https://github.com/vyperlang/vyper
44
https://github.com/shopware/platform
43
https://github.com/saltstack/salt
42
https://github.com/ikus060/rdiffweb
42
https://github.com/directus/directus
41
https://github.com/craftcms/cms
41
https://github.com/shopware/shopware
40
https://github.com/star7th/showdoc
39
https://github.com/mmaitre314/picklescan
39
https://github.com/gradio-app/gradio
39
https://github.com/magento/magento2
38
https://github.com/dotnet/runtime
38
https://github.com/openstack/nova
38
https://github.com/mantisbt/mantisbt
38
https://github.com/plone/Products.CMFPlone
37
https://github.com/x-stream/xstream
37
https://github.com/octobercms/october
36
https://github.com/umbraco/Umbraco-CMS
35
https://github.com/mlflow/mlflow
35
https://github.com/sparklemotion/nokogiri
35
https://github.com/apache/activemq
34
https://github.com/answerdev/answer
34
https://github.com/parse-community/parse-server
33
https://github.com/opencv/opencv
32
https://github.com/matrix-org/synapse
32
https://github.com/go-gitea/gitea
32
https://github.com/PaddlePaddle/Paddle
31
https://github.com/apache/inlong
31
https://github.com/cilium/cilium
31
https://github.com/snipe/snipe-it
30
https://github.com/contao/contao
30
https://github.com/rack/rack
29
https://github.com/strapi/strapi
29
https://github.com/CVEProject/cvelist
28
https://github.com/openstack/keystone
28
https://github.com/electron/electron
28
https://github.com/FlowiseAI/Flowise
28
https://github.com/gogs/gogs
28
https://github.com/netty/netty
27
https://github.com/froxlor/froxlor
26
https://github.com/github/advisory-database
26
https://github.com/geoserver/geoserver
26
https://github.com/apache/nifi
26
https://github.com/baserproject/basercms
26
https://github.com/bcgit/bc-java
25
https://github.com/langchain-ai/langchain
25
https://github.com/traefik/traefik
25
https://github.com/vllm-project/vllm
25
https://github.com/pmmp/PocketMine-MP
25
https://github.com/surrealdb/surrealdb
25
https://github.com/vercel/next.js
25
https://github.com/denoland/deno
25
https://github.com/apache/cxf
24
https://github.com/pyload/pyload
24
https://github.com/run-llama/llama_index
24
https://github.com/getgrav/grav
24
https://github.com/livehelperchat/livehelperchat
23
https://github.com/PrestaShop/PrestaShop
23
https://github.com/eclipse/jetty.project
23
https://github.com/nilsteampassnet/TeamPass
23
https://github.com/TYPO3/TYPO3.CMS
23
https://github.com/moby/moby
23
https://github.com/bytecodealliance/wasmtime
23
https://github.com/firefly-iii/firefly-iii
23
https://github.com/getkirby/kirby
22
https://github.com/jenkinsci/script-security-plugin
22
https://github.com/hashicorp/consul
22
https://github.com/zitadel/zitadel
22
https://github.com/PHPOffice/PhpSpreadsheet
22
https://github.com/helm/helm
22
https://github.com/nervosnetwork/ckb
22
https://github.com/laravel/framework
21
https://github.com/undertow-io/undertow
21
https://github.com/goharbor/harbor
21
https://github.com/hashicorp/vault
21
https://github.com/OpenZeppelin/openzeppelin-contracts
21
https://github.com/ethyca/fides
20
https://github.com/jeecgboot/jeecg-boot
20
https://github.com/dnnsoftware/Dnn.Platform
20
https://github.com/OpenNMS/opennms
20
https://github.com/funadmin/funadmin
20
https://github.com/simplesamlphp/simplesamlphp
20
https://github.com/opencast/opencast
20
https://github.com/nilsteampassnet/teampass
19
https://github.com/intelliants/subrion
19
https://github.com/alkacon/opencms-core
19
https://github.com/huggingface/transformers
19
https://github.com/backstage/backstage
19
https://github.com/TYPO3-CMS/core
19
https://github.com/cloudfoundry/uaa
19
https://github.com/vaadin/platform
18
https://github.com/apache/camel
18
https://github.com/rubygems/rubygems
18
https://github.com/containerd/containerd
17
https://github.com/openfga/openfga
17
https://github.com/vantage6/vantage6
17
https://github.com/liufee/cms
17
https://github.com/apache/kylin
17
https://github.com/mindsdb/mindsdb
17
https://github.com/ethereum/go-ethereum
17
https://github.com/OpenMage/magento-lts
17
https://github.com/tinymce/tinymce
16
https://github.com/vitejs/vite
16
https://github.com/dotnet/aspnetcore
16
https://github.com/rusqlite/rusqlite
16
https://github.com/sequelize/sequelize
16
https://github.com/forkcms/forkcms
16
https://github.com/hashicorp/nomad
16
https://github.com/quarkusio/quarkus
16
https://github.com/yetiforcecompany/yetiforcecrm
16
https://github.com/pyca/cryptography
16
https://github.com/etcd-io/etcd
16
https://github.com/aio-libs/aiohttp
15
https://github.com/OPCFoundation/UA-.NETStandard
15
https://github.com/ckeditor/ckeditor4
15
https://github.com/drupal/core
15
https://github.com/nodejs/undici
15
https://github.com/xuxueli/xxl-job
15
https://github.com/spring-projects/spring-security
15
https://github.com/centreon/centreon
15
https://github.com/cobbler/cobbler
15
https://github.com/zendframework/zendframework
15
https://github.com/decidim/decidim
15
https://github.com/MobSF/Mobile-Security-Framework-MobSF
15
https://github.com/PHPMailer/PHPMailer
15
https://github.com/containers/podman
15
https://github.com/dompdf/dompdf
15
https://github.com/puppetlabs/puppet
15
https://github.com/thorsten/phpMyFAQ
15
https://github.com/TryGhost/Ghost
14
https://github.com/ImageMagick/ImageMagick
14
https://github.com/ming-soft/MCMS
14
https://github.com/cockpit-hq/cockpit
14
https://github.com/Graylog2/graylog2-server
14
https://github.com/twisted/twisted
14
https://github.com/apache/zeppelin
14
https://github.com/cosmos/cosmos-sdk
14
https://github.com/pimcore/admin-ui-classic-bundle
14
https://github.com/janeczku/calibre-web
14
https://github.com/apache/superset
14
https://github.com/golang/go
14
https://github.com/rails/rails-html-sanitizer
14
https://github.com/publify/publify
14
https://github.com/pgadmin-org/pgadmin4
14
https://github.com/urllib3/urllib3
14
https://github.com/dpgaspar/Flask-AppBuilder
14
https://github.com/modoboa/modoboa
13
https://github.com/dromara/hutool
13
https://github.com/swagger-api/swagger-ui
13
https://github.com/apache/dolphinscheduler
13
https://github.com/zenml-io/zenml
13
https://github.com/openbao/openbao
13
https://github.com/laurent22/joplin
13
https://github.com/OpenRefine/OpenRefine
13
https://github.com/opencontainers/runc
13
https://github.com/h2oai/h2o-3
13
https://github.com/1Panel-dev/1Panel
13
https://github.com/patriksimek/vm2
12
https://github.com/openstack/glance
12
https://github.com/igniterealtime/Openfire
12
https://github.com/smarty-php/smarty
12
https://github.com/yiisoft/yii2
12
https://github.com/getsentry/sentry
12
https://github.com/codeigniter4/CodeIgniter4
12
https://github.com/nats-io/nats-server
12
https://github.com/centreon/centreon-archived
12