parse-server is vulnerable to privilege escalation. The vulnerability exists due to an incorrect session creation when using createWith
function that incorrectly classified the session type as being created with a password
which gives that user a different level of access than one created as an anonymous user.