parse-server

Releases777

Frequency6 days 5 hours

Last Release about 4 hours ago

An express module providing a Parse-compatible API server

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2020-26288 ↗	Dec 30, 2020Wednesday, 30 December 2020, 20:15	7.7 HIGH	4 MEDIUM
Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. It is an npm package "parse-server". In Parse Server before version 4.5.0, user passwords involved in LDAP authentication are stored in cleartext. This is fixed in version 4.5.0 by stripping password after authentication to prevent cleartext password storage.