Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:45 a.m.9 views

CVE-2023-22474

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Parse Server uses the request header x-forwarded-for to determine the client IP address. If Parse Server doesn't run behind a proxy server, then a client can set this header and Parse Server wi...

8.7CVSS6.6AI score0.00664EPSS
Exploits0References1
Circl
Circl
added 2023/02/03 10:20 p.m.5 views

CVE-2023-22474

creationtimestamp| type| source ---|---|--- 2023-02-03 22:20:59+00:00| seen| https://t.me/cibsecurity/57508...

8.7CVSS7.9AI score0.00664EPSS
Exploits0References1
OSV
OSV
added 2023/02/03 7:57 p.m.28 views

CVE-2023-22474 Parse Server is vulnerable to authentication bypass via spoofing

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Parse Server uses the request header x-forwarded-for to determine the client IP address. If Parse Server doesn't run behind a proxy server, then a client can set this header and Parse Server wi...

8.7CVSS7.9AI score0.00664EPSS
Exploits0References5
vulnersOsv
vulnersOsv
added 2023/01/31 10:21 p.m.9 views

@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @peterpme/parse-server-mailgun (>=2.4.8 <=2.5.11) +19 more potentially affected by CVE-2023-22474 via parse-server (>=2.0.8 <=3.10.0)

parse-server NPM version =2.0.8, =1.0.5, =2.4.8, =1.0.0, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.0, =1.0.0, =1.0.0, =1.4.0 and more Source cves: CVE-2023-22474 Source advisory: OSV:GHSA-VM5R-C87R-PF6X...

8.7CVSS7.2AI score0.00664EPSS
Exploits0
Rows per page
Query Builder