Description
parse-server before 3.6.0 allows account enumeration.
Remediation
References
https://github.com/parse-community/parse-server/security/advisories/GHSA-8w3j-g983-8jh5
Related Vulnerabilities
CVE-2022-1295 Vulnerability in maven package org.webjars.bower:fullpage.js
CVE-2020-7760 Vulnerability in maven package org.webjars.npm:codemirror
CVE-2021-21631 Vulnerability in maven package org.jenkins-ci.plugins:cloud-stats
CVE-2019-20149 Vulnerability in maven package org.webjars.bowergithub.jonschlinkert:kind-of
CVE-2020-16040 Vulnerability in maven package org.webjars.npm:electron