Vulnerabilities

search
ID
Packages
Summary
Published
arrow_upward
Attributes
BIT-parse-2026-33163
  • Bitnami/parse
 Parse Server leaks protected fields via LiveQuery afterEvent trigger yesterday
  • Fix available
  • Severity - 8.2 (High)
BIT-parse-2026-33042
  • Bitnami/parse
 Parse Server affected by empty authData bypassing credential requirement on signup yesterday
  • Fix available
  • Severity - 6.9 (Medium)
BIT-parse-2026-32944
  • Bitnami/parse
 Parse Server crash via deeply nested query condition operators yesterday
  • Fix available
  • Severity - 8.7 (High)
BIT-parse-2026-32943
  • Bitnami/parse
 Parse Server has a password reset token single-use bypass via concurrent requests yesterday
  • Fix available
  • Severity - 2.3 (Low)
BIT-parse-2026-32886
  • Bitnami/parse
 Parse Server's Cloud function dispatch crashes server via prototype chain traversal yesterday
  • Fix available
  • Severity - 8.2 (High)
BIT-parse-2026-32878
  • Bitnami/parse
 Parse Server vulnerable to schema poisoning via prototype pollution in deep copy yesterday
  • Fix available
  • Severity - 5.3 (Medium)
BIT-parse-2026-32770
  • Bitnami/parse
 Parse Server: LiveQuery subscription with invalid regular expression crashes server yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-parse-2026-32742
  • Bitnami/parse
 Parse Server session creation endpoint allows overwriting server-generated session fields yesterday
  • Fix available
  • Severity - 4.3 (Medium)
BIT-parse-2026-32728
  • Bitnami/parse
 Parse Server has a stored XSS filter bypass via Content-Type MIME parameter and missing XML extension blocklist entries yesterday
  • Fix available
  • Severity - 8.3 (High)
BIT-python-2026-3479
  • Bitnami/python
 pkgutil.get_data() does not enforce documented restrictions yesterday
  • Fix available
  • Severity - 2.1 (Low)
BIT-python-min-2026-3479
  • Bitnami/python-min
 pkgutil.get_data() does not enforce documented restrictions yesterday
  • Fix available
  • Severity - 2.1 (Low)
BIT-thrift-2020-13949
  • Bitnami/thrift
 See record for full details yesterday
  • No fix available
  • Severity - 7.5 (High)
BIT-parse-2026-32594
  • Bitnami/parse
 Parse Server GraphQL WebSocket endpoint bypasses security middleware yesterday
  • Fix available
  • Severity - 6.9 (Medium)
BIT-rabbitmq-c-2023-35789
  • Bitnami/rabbitmq-c
 See record for full details yesterday
  • No fix available
  • Severity - 5.5 (Medium)
BIT-jenkins-2026-33002
  • Bitnami/jenkins
 See record for full details yesterday
  • Fix available
  • Severity - 7.5 (High)
BIT-jenkins-2026-33001
  • Bitnami/jenkins
 See record for full details yesterday
  • Fix available
  • Severity - 8.8 (High)
Load more...