Parseplatform Parse-server 2.7.4

CPE Details

Parseplatform Parse-server 2.7.4
parseplatform
parse-server
2.7.4
2019-07-29
12h33 +00:00
2019-07-29
12h33 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:parseplatform:parse-server:2.7.4:*:*:*:*:*:*:*

Informations

Vendor

parseplatform

Product

parse-server

Version

2.7.4

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2020-5251 2020-03-04 14h10 +00:00 In parser-server before version 4.1.0, you can fetch all the users objects, by using regex in the NoSQL query. Using the NoSQL, you can use a regex on sessionToken and find valid accounts this way.
7.7
Haute
CVE-2019-1020013 2019-07-29 10h18 +00:00 parse-server before 3.6.0 allows account enumeration.
5.3
Moyen
CVE-2019-1020012 2019-07-29 10h16 +00:00 parse-server before 3.4.1 allows DoS after any POST to a volatile class.
7.5
Haute