EPSS
Percentile
76.3%
An arbitrary file upload vulnerability in the file upload module of Ghost v4.39.0 allows attackers to execute arbitrary code via a crafted SVG file.
ghost.org/docs/security/#privilege-escalation-attacks
github.com/TryGhost/Ghost
nvd.nist.gov/vuln/detail/CVE-2022-27139
youtu.be/FCqWEvir2wE