Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.3
Parse Dashboard: Unsecured Agent Endpoint Allows Session Hijacking
CVE-2026-27609
GHSA-3534-xp88-25rc
Summary
An attacker can trick an authenticated user into making unauthorized requests to the Parse Dashboard's agent endpoint. To protect your dashboard, update to the latest version of Parse Dashboard, which includes a fix for this issue, or remove the agent configuration if you don't use it. This vulnerability affects all versions of Parse Dashboard before the latest patch.
What to do
- Update parseadmin parse-dashboard to version 9.0.0-alpha.8.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| parseadmin | parse-dashboard | > 7.3.0-alpha.42 , <= 9.0.0-alpha.8 | 9.0.0-alpha.8 |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0 | – |
| parseplatform | parse_dashboard | 7.3.0-alpha.42 | – |
| parseplatform | parse_dashboard | 7.4.0 | – |
| parseplatform | parse_dashboard | 7.4.0 | – |
| parseplatform | parse_dashboard | 7.4.0 | – |
| parseplatform | parse_dashboard | 7.4.0 | – |
| parseplatform | parse_dashboard | 7.4.0 | – |
| parseplatform | parse_dashboard | 7.5.0 | – |
| parseplatform | parse_dashboard | 7.5.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 7.6.0 | – |
| parseplatform | parse_dashboard | 8.0.0 | – |
| parseplatform | parse_dashboard | 8.0.0 | – |
| parseplatform | parse_dashboard | 8.0.0 | – |
| parseplatform | parse_dashboard | 8.0.0 | – |
| parseplatform | parse_dashboard | 8.0.0 | – |
| parseplatform | parse_dashboard | 8.0.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.0 | – |
| parseplatform | parse_dashboard | 8.1.1 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.2.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.3.0 | – |
| parseplatform | parse_dashboard | 8.4.0 | – |
| parseplatform | parse_dashboard | 8.4.1 | – |
| parseplatform | parse_dashboard | 8.4.1 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 8.5.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
| parseplatform | parse_dashboard | 9.0.0 | – |
Original title
Parse Dashboard is Missing CSRF Protection for its Agent Endpoint
Original description
### Impact
The AI Agent API endpoint (`POST /apps/:appId/agent`) lacks CSRF protection. An attacker can craft a malicious page that, when visited by an authenticated dashboard user, submits requests to the agent endpoint using the victim's session.
### Patches
The fix adds CSRF middleware to the agent endpoint and embeds a CSRF token in the dashboard page.
### Workarounds
Remove the `agent` configuration block from your dashboard configuration. Dashboards without an `agent` config are not affected.
### Resources
- GitHub advisory: https://github.com/parse-community/parse-dashboard/security/advisories/GHSA-3534-xp88-25rc
- Fixed in: https://github.com/parse-community/parse-dashboard/releases/tag/9.0.0-alpha.8
The AI Agent API endpoint (`POST /apps/:appId/agent`) lacks CSRF protection. An attacker can craft a malicious page that, when visited by an authenticated dashboard user, submits requests to the agent endpoint using the victim's session.
### Patches
The fix adds CSRF middleware to the agent endpoint and embeds a CSRF token in the dashboard page.
### Workarounds
Remove the `agent` configuration block from your dashboard configuration. Dashboards without an `agent` config are not affected.
### Resources
- GitHub advisory: https://github.com/parse-community/parse-dashboard/security/advisories/GHSA-3534-xp88-25rc
- Fixed in: https://github.com/parse-community/parse-dashboard/releases/tag/9.0.0-alpha.8
nvd CVSS3.1
6.5
nvd CVSS4.0
8.3
Vulnerability type
CWE-352
Cross-Site Request Forgery (CSRF)
Published: 25 Feb 2026 · Updated: 12 Mar 2026 · First seen: 6 Mar 2026