2 matches found
CVE-2023-46119
Parse Server vulnerability CVE-2023-46119 causes crashes during file upload when no extension is provided. Affected software: Parse Server (Node.js backend). Root cause (as described in sources): crash due to handling of file uploads without an extension, leading to denial of service-like disrupt...
@bigegg/parse-server-schema-config (>=1.0.5 <=1.0.10), @peterpme/parse-server-mailgun (>=2.4.8 <=2.5.11) +19 more potentially affected by CVE-2023-46119 via parse-server (>=2.0.8 <=3.10.0)
parse-server NPM version =2.0.8, =1.0.5, =2.4.8, =1.0.0, =0.1.1, =0.0.2, =1.0.0, =0.1.0, =0.1.7, =0.0.1, =0.0.0, =1.0.0, =1.0.0, =1.4.0 and more Source cves: CVE-2023-46119 Source advisory: OSV:GHSA-792Q-Q67H-W579...