Lucene search
K

Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')

🗓️ 05 Mar 2026 08:14:25Reported by Snyk Security DatabaseType 
snyk
 snyk
🔗 security.snyk.io👁 5 Views

Ghost vulnerability allows code execution via a crafted theme; upgrade to version 6.19.1 or higher.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
GithubExploit
Exploit for Injection in Ghost
12 Mar 202609:55
githubexploit
GithubExploit
Exploit for Injection in Ghost
21 Apr 202623:50
githubexploit
GithubExploit
Exploit for SQL Injection in Ghost
17 Apr 202619:15
githubexploit
ATTACKERKB
CVE-2026-29053
5 Mar 202605:51
attackerkb
Circl
CVE-2026-29053
5 Mar 202606:21
circl
CNNVD
Ghost 注入漏洞
5 Mar 202600:00
cnnvd
CVE
CVE-2026-29053
5 Mar 202605:51
cve
Cvelist
CVE-2026-29053 Ghost Vulnerable to Remote Code Execution via Malicious Themes
5 Mar 202605:51
cvelist
Github Security Blog
Ghost Vulnerable to Remote Code Execution via Malicious Themes
3 Mar 202620:01
github
NVD
CVE-2026-29053
5 Mar 202606:16
nvd
Rows per page
Vulners
Node
ghostghostRange<6.19.1

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

10 Mar 2026 01:19Current
6.1Medium risk
Vulners AI Score6.1
CVSS 3.17.6 - 9.8
CVSS 48.7
EPSS0.00372
SSVC
5