Parse Dashboard is a management interface for Parse Server applications. In versions 7.3.0-alpha.42 through 9.0.0-alpha.7, a critical vulnerability (CVE-2026-27608) exists in the AI Agent API endpoint (`POST /apps/:appId/agent`). This endpoint does not enforce proper authorization checks, allowing authenticated users with access scoped to specific apps to bypass restrictions by modifying the app ID parameter in the URL to access other apps' agent endpoints. Additionally, users with read-only roles are mistakenly provided the full master key instead of a restricted read-only master key. This misconfiguration enables them to escalate privileges by supplying write permissions in the request body, thereby performing unauthorized write and delete operations on other apps. The vulnerability only affects dashboards that have the `agent` configuration enabled; dashboards without this configuration are not impacted. The fix introduced in version 9.0.0-alpha.8 adds per-app authorization enforcement and restricts read-only users to the read-only master key with server-side stripping of write permissions. No known exploits are reported in the wild yet. The vulnerability is classified under CWE-862 (Missing Authorization). The CVSS 4.0 vector indicates network attack vector, low attack complexity, no privileges required beyond authenticated user, no user interaction, and high impact on confidentiality, integrity, and availability, with scope changed due to cross-app access. This vulnerability poses a severe risk of unauthorized data access and manipulation across multiple Parse Server applications managed via the dashboard.

This vulnerability allows authenticated users scoped to a single app to access and manipulate data of other apps managed by the same parse-dashboard instance, violating data confidentiality and integrity. Read-only users can escalate privileges to perform write and delete operations, potentially leading to data loss, unauthorized data modification, and disruption of service availability. Organizations relying on parse-dashboard with the vulnerable versions and agent feature enabled face risks of cross-application data breaches and operational disruption. The impact is critical because it affects multiple security properties (confidentiality, integrity, availability) and can be exploited remotely without additional user interaction or elevated privileges beyond authentication. This could lead to significant reputational damage, regulatory compliance violations, and financial losses, especially for multi-tenant environments or SaaS providers using parse-dashboard for app management.

1. Upgrade parse-dashboard to version 9.0.0-alpha.8 or later, which includes the fix with per-app authorization checks and proper permission restrictions for read-only users. 2. As an immediate workaround, remove the `agent` configuration block from the dashboard configuration to disable the vulnerable AI Agent API endpoint. 3. Audit and restrict user roles and permissions to minimize exposure, ensuring that users have the least privilege necessary. 4. Monitor dashboard access logs for suspicious activity, such as unexpected app ID changes in API requests or unauthorized write/delete operations. 5. Implement network segmentation and access controls to limit dashboard access to trusted users and networks. 6. Conduct security reviews of dashboard configurations regularly to ensure no unintended features like `agent` are enabled without proper controls. 7. Educate administrators about this vulnerability and the importance of timely patching and configuration management.