Parceljs Parcel
2 CVEs affecting Parceljs Parcel. Latest disclosed: 2025-09-17. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-14731 | High | 7.5 | 2018-09-21 | An issue was discovered in HMRServer.js in Parcel parcel-bundler. Attackers are able to steal developer's code because the origin of requests is not checked by… |
CVE-2025-56648 | Medium | 6.5 | 2025-09-17 | npm parcel 2.0.0-alpha and before has an Origin Validation Error vulnerability. Malicious websites can send XMLHTTPRequests to the application's development se… |