parall CVE Vulnerabilities & Metrics

Focus on parall vulnerabilities and metrics.

Last updated: 10 Sep 2025, 22:25 UTC

About parall Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with parall. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total parall CVEs: 4
Earliest CVE date: 06 Jul 2020, 13:15 UTC
Latest CVE date: 26 Aug 2025, 16:15 UTC

Latest CVE reference: CVE-2025-57810

Rolling Stats

30-day Count (Rolling): 1
365-day Count (Rolling): 1

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical parall CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 3.4

Max CVSS: 5.0

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	1
4.0-6.9	3
7.0-8.9	0
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS parall CVEs

These are the five CVEs with the highest CVSS scores for parall, sorted by severity first and recency.

CVE-2021-23353 parall Published on 09 Mar 2021, 19:15 UTC (CVSS: 5.0)
This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function.
CVE-2020-7691 parall Published on 06 Jul 2020, 13:15 UTC (CVSS: 4.3)
In all versions of the package jspdf, it is possible to use <<script>script> in order to go over the filtering regex.
CVE-2020-7690 parall Published on 06 Jul 2020, 13:15 UTC (CVSS: 4.3)
All affected versions <2.0.0 of package jspdf are vulnerable to Cross-site Scripting (XSS). It is possible to inject JavaScript code via the html method.
CVE-2025-57810 parall Published on 26 Aug 2025, 16:15 UTC (CVSS: 0)
jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG file that results in high CPU utilization and denial of service. The vulnerability was fixed in jsPDF 3.0.2.

All CVEs for parall

CVE-2025-57810 parall vulnerability CVSS: 0 26 Aug 2025, 16:15 UTC

jsPDF is a library to generate PDFs in JavaScript. Prior to 3.0.2, user control of the first argument of the addImage method results in CPU utilization and denial of service. If given the possibility to pass unsanitized image data or URLs to the addImage method, a user can provide a harmful PNG file that results in high CPU utilization and denial of service. The vulnerability was fixed in jsPDF 3.0.2.

CVE-2021-23353 parall vulnerability CVSS: 5.0 09 Mar 2021, 19:15 UTC

This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function.

CVE-2020-7691 parall vulnerability CVSS: 4.3 06 Jul 2020, 13:15 UTC

In all versions of the package jspdf, it is possible to use <<script>script> in order to go over the filtering regex.

CVE-2020-7690 parall vulnerability CVSS: 4.3 06 Jul 2020, 13:15 UTC

All affected versions <2.0.0 of package jspdf are vulnerable to Cross-site Scripting (XSS). It is possible to inject JavaScript code via the html method.