GHSA-g938-h978-wf7vHighCVSS 7.5

Parse Server before 4.10.0 contains a supply chain vulnerability where incorrect version tags...

Published
June 26, 2026
Last Modified
June 26, 2026

🔗 CVE IDs covered (1)

📋 Description

Parse Server before 4.10.0 contains a supply chain vulnerability where incorrect version tags were pushed to the repository linking to unreviewed code in a personal fork. Attackers could exploit this by specifying affected version tags in dependency declarations to execute unreviewed and potentially malicious code.

🔗 References (4)