Known CVE vulnerabilities and GitHub Security Advisories affecting the npm package parse, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (2)
CVE-2025-57324 — CVSS 6.5 (medium): parse is a package designed to parse JavaScript SDK. A Prototype Pollution vulnerability in the SingleInstanceStateController.initializeStat…
CVE-2025-62374 — CVSS 6.4 (medium): Parse Javascript SDK provides access to the powerful Parse Server backend from your JavaScript app. Prior to 7.0.0, injection of malicious…