CVE-2026-33627 | parse-community parse-server up to 8.6.60/9.6.0-alpha.54 Endpoint information disclosure (GHSA-37mj-c2wf-cx96)

Inserito da Angelo Barbosa | Mar 24, 2026 | CVE

A vulnerability categorized as problematic has been discovered in parse-community parse-server up to 8.6.60/9.6.0-alpha.54. This vulnerability affects unknown code of the component Endpoint. Such manipulation leads to information disclosure.

This vulnerability is referenced as CVE-2026-33627. It is possible to launch the attack remotely. No exploit is available.

It is advisable to upgrade the affected component.

CVE-2026-33627 | parse-community parse-server up to 8.6.60/9.6.0-alpha.54 Endpoint information disclosure (GHSA-37mj-c2wf-cx96)

Post correlati

CVE-2024-23191 | Open-Xchange OX App Suite up to 7.10.6-rev40 cross site scripting (adv-2024-0001)

CVE-2024-33789 | Linksys E5600 1.1.0.26 /API/info ipurl command injection

CVE-2020-37127 | dnsmasq dnsmasq-utils 2.79-1 dhcp_release stack-based overflow (Exploit 48301)

CVE-2024-1986 | Elite Booster for WooCommerce Plugin up to 7.1.7 on WordPress unrestricted upload