Description
parse-server before 3.6.0 allows account enumeration.
Remediation
References
https://github.com/parse-community/parse-server/security/advisories/GHSA-8w3j-g983-8jh5
Related Vulnerabilities
CVE-2018-20594 Vulnerability in maven package org.hswebframework.web:hsweb-system-workflow-local
CVE-2021-29443 Vulnerability in npm package jose
CVE-2020-12725 Vulnerability in npm package redash
CVE-2022-45391 Vulnerability in maven package io.jenkins.plugins:cavisson-ns-nd-integration
CVE-2021-33562 Vulnerability in maven package com.shopizer:shopizer