Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:42 a.m.9 views

CVE-2024-23724

Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via an SVG profile picture that contains JavaScript code to interact with the API on localhost TCP port 3001. NOTE: The discoverer reports that "The vendor does not view th...

9CVSS6.9AI score0.03485EPSS
Exploits1References1
Rhino Security Labs
Rhino Security Labs
added 2024/02/13 3:30 p.m.31 views

CVE-2024-23724: Ghost CMS Stored XSS Leading to Owner Takeover

The post CVE-2024-23724: Ghost CMS Stored XSS Leading to Owner Takeover appeared first on Rhino Security Labs...

9CVSS8.8AI score0.03485EPSS
Exploits1
NVD
NVD
added 2024/02/11 1:15 a.m.17 views

CVE-2024-23724

Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via an SVG profile picture that contains JavaScript code to interact with the API on localhost TCP port 3001. NOTE: The discoverer reports that "The vendor does not view th...

9CVSS6.6AI score0.03485EPSS
Exploits1References3
CVE
CVE
added 2024/02/11 12:0 a.m.136 views

CVE-2024-23724

Ghost CMS up to version 5.76.0 is vulnerable to a stored XSS via an SVG profile image containing JavaScript that can interact with the API on localhost:3001, potentially leading to privilege escalation where a contributor can take over any account. The issue is repeatedly described across multipl...

9CVSS6.8AI score0.03485EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2024/02/11 12:0 a.m.21 views

CVE-2024-23724

Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via an SVG profile picture that contains JavaScript code to interact with the API on localhost TCP port 3001. NOTE: The discoverer reports that "The vendor does not view th...

6.9AI score0.03485EPSS
Exploits1References3
Rows per page
Query Builder