Parceljs Parcel

2 CVEs affecting Parceljs Parcel. Latest disclosed: 2025-09-17. Critical: 0, High: 1.

Top CVEs affecting Parceljs Parcel
CVESeverityScorePublishedSummary
CVE-2018-14731High7.52018-09-21An issue was discovered in HMRServer.js in Parcel parcel-bundler. Attackers are able to steal developer's code because the origin of requests is not checked by…
CVE-2025-56648Medium6.52025-09-17npm parcel 2.0.0-alpha and before has an Origin Validation Error vulnerability. Malicious websites can send XMLHTTPRequests to the application's development se…