CVE-2025-57324 | parse up to 5.3.0 SingleInstanceStateController.initializeState prototype pollution

A vulnerability classified as problematic has been found in parse up to 5.3.0. The affected element is the function SingleInstanceStateController.initializeState. The manipulation leads to improperly controlled modification of object prototype attributes (‘prototype pollution’).

This vulnerability is listed as CVE-2025-57324. The attack must be carried out from within the local network. In addition, an exploit is available.VulDB Recent EntriesRead More