CVE-2024-27298

Published: 2024-03-01T18:15Z

Last Modified: 2024-11-21T09:04Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

parse-server is a Parse Server for Node.js / Express. This vulnerability allows SQL injection when Parse Server is configured to use the PostgreSQL database. The vulnerability has been fixed in 6.5.0 and 7.0.0-alpha.20. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt