Vulnerabilities > Parseplatform > Parse Server > 2.6.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-30 | CVE-2022-31112 | Improper Cross-boundary Removal of Sensitive Data vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 8.2 |
| 2022-06-27 | CVE-2022-31089 | Use of Incorrectly-Resolved Name or Reference vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 5.0 |
| 2022-06-17 | CVE-2022-31083 | Improper Certificate Validation vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 7.5 |
| 2022-05-04 | CVE-2022-24901 | Improper Certificate Validation vulnerability in Parseplatform Parse-Server Improper validation of the Apple certificate URL in the Apple Game Center authentication adapter allows attackers to bypass authentication, making the server vulnerable to DoS attacks. | 5.0 |
| 2022-03-12 | CVE-2022-24760 | Unspecified vulnerability in Parseplatform Parse-Server Parse Server is an open source http web server backend. | 7.5 |
| 2021-09-30 | CVE-2021-41109 | Information Exposure vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 4.3 |
| 2021-09-02 | CVE-2021-39187 | Improper Handling of Exceptional Conditions vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 5.0 |
| 2021-08-19 | CVE-2021-39138 | Incorrect Authorization vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 6.4 |
| 2020-12-30 | CVE-2020-26288 | Cleartext Storage of Sensitive Information vulnerability in Parseplatform Parse-Server Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. | 4.0 |
| 2020-10-22 | CVE-2020-15270 | Operation on a Resource after Expiration or Release vulnerability in Parseplatform Parse-Server Parse Server (npm package parse-server) broadcasts events to all clients without checking if the session token is valid. | 4.0 |