GMS-2022-6498: Duplicate of ./npm/parse-server/CVE-2022-39396.yml
(updated )
Improper Neutralization of Special Elements used in an OS Command (‘OS Command Injection’) in parse-server.
References
- github.com/advisories/GHSA-prm5-8g2m-24gg
- github.com/parse-community/parse-server/pull/8295
- github.com/parse-community/parse-server/pull/8296
- github.com/parse-community/parse-server/releases/tag/4.10.18
- github.com/parse-community/parse-server/releases/tag/5.3.1
- github.com/parse-community/parse-server/security/advisories/GHSA-prm5-8g2m-24gg
Code Behaviors & Features
Detect and mitigate GMS-2022-6498 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →