kami-parse-server/package-lock.json at 4.10.15

Public Access

Files

semantic-release-bot 9d502269c5 chore(release): 4.10.15 [skip ci]

## [4.10.15](https://github.com/parse-community/parse-server/compare/4.10.14...4.10.15) (2022-09-20)

### Bug Fixes

* session object properties can be updated by foreign user; this fixes a security vulnerability in which a foreign user can write to the session object of another user if the session object ID is known; the fix prevents writing to foreign session objects ([GHSA-6w4q-23cf-j9jp](https://github.com/parse-community/parse-server/security/advisories/GHSA-6w4q-23cf-j9jp)) ([#8183](https://github.com/parse-community/parse-server/issues/8183)) ([7ca9ed0](7ca9ed0142))

2022-09-20 00:33:55 +00:00

660 KiB

Raw Permalink Blame History

View Raw

660 KiB Raw Permalink Blame History

660 KiB

Raw Permalink Blame History