High severityNVD Advisory· Published May 22, 2024· Updated Feb 13, 2025
CVE-2024-34448
CVE-2024-34448
Description
Ghost before 5.82.0 allows CSV Injection during a member CSV export.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
@tryghost/members-csvnpm | < 5.82.0 | 5.82.0 |
Affected products
3- osv-coords2 versions
< 5.82.0+ 1 more
- (no CPE)range: < 5.82.0
- (no CPE)range: < 5.82.0
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.