Parse Dashboard Missing CSRF Protection on Agent Endpoint
Description
Parse Dashboard is a standalone dashboard for managing Parse Server apps. In versions 7.3.0-alpha.42 through 9.0.0-alpha.7, the AI Agent API endpoint (POST /apps/:appId/agent) lacks CSRF protection. An attacker can craft a malicious page that, when visited by an authenticated dashboard user, submits requests to the agent endpoint using the victim's session. The fix in version 9.0.0-alpha.8 adds CSRF middleware to the agent endpoint and embeds a CSRF token in the dashboard page. As a workaround, remove the agent configuration block from your dashboard configuration. Dashboards without an agent config are not affected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Parse Dashboard versions 7. The AI Agent API endpoint lacks CSRF protection, allowing attackers to perform unauthorized actions on behalf of authenticated users.
Vulnerability
Overview
Parse Dashboard versions 7.3.0-alpha.42 through 9.0.0-alpha.7 contain a missing Cross-Site Request Forgery (CSRF) protection vulnerability in the AI Agent API endpoint (POST /apps/:appId/agent). The endpoint does not validate the origin of requests, making it susceptible to CSRF attacks [2][3].
Attack
Vector and Prerequisites
An attacker can craft a malicious web page that, when visited by an authenticated Parse Dashboard user, silently submits requests to the vulnerable agent endpoint using the victim's active session. The attack requires no special privileges beyond the victim being logged into the dashboard, and the attacker does not need to be on the same network [2].
Impact
Successful exploitation allows the attacker to perform any action available through the AI Agent endpoint on behalf of the victim. This could include manipulating AI agent configurations or executing agent-related operations, potentially leading to unauthorized data access or system changes [2][3].
Mitigation
The vulnerability is fixed in version 9.0.0-alpha.8, which adds CSRF middleware to the agent endpoint and embeds a CSRF token in the dashboard page [4]. As a workaround, administrators can remove the agent configuration block from their dashboard configuration; dashboards without an agent config are not affected [3].
AI Insight generated on May 19, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
parse-dashboardnpm | >= 7.3.0-alpha.42, < 9.0.0-alpha.8 | 9.0.0-alpha.8 |
Affected products
2- Range: >=7.3.0-alpha.42 <=9.0.0-alpha.7
- parse-community/parse-dashboardv5Range: >= 7.3.0-alpha.42, < 9.0.0-alpha.8
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/advisories/GHSA-3534-xp88-25rcghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2026-27609ghsaADVISORY
- github.com/parse-community/parse-dashboard/releases/tag/9.0.0-alpha.8ghsax_refsource_MISCWEB
- github.com/parse-community/parse-dashboard/security/advisories/GHSA-3534-xp88-25rcghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.