Lucene search
+L

136 matches found

Cvelist
Cvelist
added 2026/01/10 2:57 a.m.27 views

CVE-2026-22597 Ghost has SSRF via External Media Inliner

Ghost is a Node.js content management system. In versions 5.38.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost’s media inliner mechanism allows staff users in possession of a valid authentication token for the Ghost Admin API to exfiltrate data from internal systems via SSRF...

5.1CVSS0.00265EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/10 2:57 a.m.3 views

CVE-2026-22595 Ghost has Staff Token permission bypass

Ghost is a Node.js content management system. In versions 5.121.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's handling of Staff Token authentication allowed certain endpoints to be accessed that were only intended to be accessible via Staff Session authentication. Externa...

8.1CVSS6.6AI score0.00494EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/10 2:57 a.m.21 views

CVE-2026-22595 Ghost has Staff Token permission bypass

Ghost is a Node.js content management system. In versions 5.121.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's handling of Staff Token authentication allowed certain endpoints to be accessed that were only intended to be accessible via Staff Session authentication. Externa...

8.1CVSS0.00494EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/01/10 2:56 a.m.2 views

CVE-2026-22594 Ghost has Staff 2FA bypass

Ghost is a Node.js content management system. In versions 5.105.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's 2FA mechanism allows staff users to skip email 2FA. This issue has been patched in versions 5.130.6 and 6.11.0...

8.1CVSS6.4AI score0.00367EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/10 2:56 a.m.42 views

CVE-2026-22594 Ghost has Staff 2FA bypass

Ghost is a Node.js content management system. In versions 5.105.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's 2FA mechanism allows staff users to skip email 2FA. This issue has been patched in versions 5.130.6 and 6.11.0...

8.1CVSS0.00367EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/10 12:0 a.m.10 views

PT-2026-2216

Name of the Vulnerable Software and Affected Versions Ghost versions 5.105.0 through 5.130.5 Ghost versions 6.0.0 through 6.10.3 Description Ghost is a Node.js content management system. A flaw in Ghost’s 2FA mechanism permits staff users to bypass email 2FA. The issue affects the two-factor...

8.1CVSS6.6AI score0.00367EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/01/10 12:0 a.m.6 views

PT-2026-2217

Name of the Vulnerable Software and Affected Versions Ghost versions 5.121.0 through 5.130.5 Ghost versions 6.0.0 through 6.10.3 Description Ghost is a Node.js content management system. A flaw in how Ghost manages Staff Token authentication permitted access to endpoints intended only for Staff...

8.1CVSS6.5AI score0.00494EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2026/01/09 9:24 a.m.13 views

CVE-2023-40028

Ghost is an open source content management system. Versions prior to 5.59.1 are subject to a vulnerability which allows authenticated users to upload files that are symlinks. This can be exploited to perform an arbitrary file read of any file on the host operating system. Site administrators can...

6.5CVSS6.6AI score0.57565EPSS
Exploits12References1
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.8 views

Ghost CMS 5.42.1 - Path Traversal (CVE-2023-32235)

Binary data ghostcmspathtraversalcve-2023-32235.nbin...

7.5CVSS7AI score0.39078EPSS
Exploits3References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-1159

Malware in sbrugna...

8.1CVSS8AI score0.0122EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-29242

Malicious code in bioql PyPI...

6.1CVSS6.4AI score0.00483EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-2525

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00325EPSS
Exploits0References4
OSV
OSV
added 2025/09/17 3:2 p.m.5 views

CVE-2025-9862 Ghost 6.0.6 - SSRF via oEmbed Bookmark

Server-Side Request Forgery SSRF vulnerability in Ghost allows an attacker to access internal resources.This issue affects Ghost: from 6.0.0 through 6.0.8, from 5.99.0 through 5.130.3...

6.1CVSS5.9AI score0.00483EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2025/09/17 3:2 p.m.1 views

CVE-2025-9862 Ghost 6.0.6 - SSRF via oEmbed Bookmark

Server-Side Request Forgery SSRF vulnerability in Ghost allows an attacker to access internal resources.This issue affects Ghost: from 6.0.0 through 6.0.8, from 5.99.0 through 5.130.3...

6.1CVSS6.6AI score0.00483EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2025/09/15 8:31 p.m.10 views

Ghost vulnerable to Server Side Request Forgery (SSRF) via oEmbed Bookmark

Impact A vulnerability in Ghost's oEmbed mechanism allows staff users to exfiltrate data from internal systems via SSRF. Vulnerable versions This vulnerability is present in Ghost v5.99.0 to v5.130.3 to and Ghost v6.0.0 to v6.0.8. Patches v5.130.4 and v6.0.9 contain a fix for this issue. Referenc...

6.5CVSS6.8AI score0.00483EPSS
Exploits1References8Affected Software1
Packet Storm
Packet Storm
added 2025/08/12 12:0 a.m.93 views

📄 Ghost CMS 5.59.1 Arbitrary File Read

Ghost CMS version 5.59.1 proof of concept arbitrary file read exploit. !/usr/bin/env python3 -- coding: utf-8 -- """ Exploit Title: Ghost CMS 5.59.1 - Arbitrary File Read Date: 2023-09-20 Exploit Author: ibrahimsql https://github.com/ibrahmsql Vendor Homepage: https://ghost.org Software Link:...

6.5CVSS7.4AI score0.57565EPSS
Exploits12
Packet Storm
Packet Storm
added 2025/08/12 12:0 a.m.136 views

📄 Ghost CMS Path Traversal

Ghost CMS versions prior to 5.42.1 contain a path traversal vulnerability that allows remote attackers to read arbitrary files within the active theme's folder structure. !/usr/bin/env python3 -- coding: utf-8 -- """ Exploit Title: Ghost CMS 5.42.1 - Path Traversal Date: 2023-06-15 Exploit...

7.5CVSS7.3AI score0.39078EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/05/23 12:49 a.m.4 views

CVE-2022-28397

An arbitrary file upload vulnerability in the file upload module of Ghost CMS v4.42.0 allows attackers to execute arbitrary code via a crafted file. NOTE: Vendor states as detailed in Ghost's security documentation, files can only be uploaded and published by trusted users, this is intentional...

9.8CVSS7.8AI score0.0325EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:23 p.m.14 views

CVE-2021-29484

Ghost is a Node.js CMS. An unused endpoint added during the development of 4.0.0 has left sites vulnerable to untrusted users gaining access to Ghost Admin. Attackers can gain access by getting logged in users to click a link containing malicious code. Users do not need to enter credentials and m...

6.8CVSS6.8AI score0.07935EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:11 p.m.10 views

CVE-2021-39192

Ghost is a Node.js content management system. An error in the implementation of the limits service between versions 4.0.0 and 4.9.4 allows all authenticated users including contributors to view admin-level API keys via the integrations API endpoint, leading to a privilege escalation vulnerability...

7.2CVSS6.8AI score0.01019EPSS
Exploits1References1
Rows per page
Query Builder