Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Invalid push request payload crashes Parse Server
Vulnerability Description
parse-server-push-adapter is the official Push Notification adapter for Parse Server. The Parse Server Push Adapter can crash Parse Server due to an invalid push notification payload. This issue has been patched in version 4.1.3.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Vulnerability Type
输入验证不恰当
Vulnerability Title
parse-server 输入验证错误漏洞
Vulnerability Description
parse-server是一款开源的Backend-as-a-Service(BaaS)框架,它主要用于应用程序后端处理。 parse-server-push-adapter 4.1.3之前版本存在安全漏洞,该漏洞源于无效的推送通知导致负载过高,可能会使 Parse Server 崩溃。
CVSS Information
N/A
Vulnerability Type
N/A