Devon Govett

1 exploit Active since Sep 2025
CVE-2025-56648 WRITEUP MEDIUM WRITEUP
parcel < 1.10.3 - Origin Validation Error via XMLHTTPRequest
npm parcel 2.0.0-alpha and before has an Origin Validation Error vulnerability. Malicious websites can send XMLHTTPRequests to the application's development server and read the response to steal source code when developers visit them.
CVSS 6.5