VYPR

Ghost

by Tryghost

npm: ghost

Source repositories

CVEs (41)

  • CVE-2026-22594Jan 10, 2026
    risk 0.00cvss epss 0.00

    Ghost is a Node.js content management system. In versions 5.105.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's 2FA mechanism allows staff users to skip email 2FA. This issue has been patched in versions 5.130.6 and 6.11.0.

  • CVE-2025-66373Dec 4, 2025
    risk 0.00cvss epss 0.00

    Akamai Ghost on Akamai CDN edge servers before 2025-11-17 has a chunked request body processing error that can result in HTTP request smuggling. When Akamai Ghost receives an invalid chunked body that includes a chunk size different from the actual size of the following chunk…

  • CVE-2025-9862Sep 17, 2025
    risk 0.00cvss epss 0.00

    Server-Side Request Forgery (SSRF) vulnerability in Ghost allows an attacker to access internal resources.This issue affects Ghost: from 6.0.0 through 6.0.8, from 5.99.0 through 5.130.3.

  • CVE-2025-2056Mar 14, 2025
    risk 0.00cvss epss 0.01

    The WP Ghost (Hide My WP Ghost) – Security & Firewall plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 5.4.01 via the showFile function. This makes it possible for unauthenticated attackers to read the contents of specific file types…

  • CVE-2025-27092Feb 19, 2025
    risk 0.00cvss epss 0.01

    GHOSTS is an open source user simulation framework for cyber experimentation, simulation, training, and exercise. A path traversal vulnerability was discovered in GHOSTS version 8.0.0.0 that allows an attacker to access files outside of the intended directory through the photo…

  • CVE-2024-43409Aug 20, 2024
    risk 0.00cvss epss 0.00

    Ghost is a Node.js content management system. Improper authentication on some endpoints used for member actions would allow an attacker to perform member-only actions, and read member information. This security vulnerability is present in Ghost v4.46.0-v5.89.4. v5.89.5 contains…

  • CVE-2024-34451Jun 16, 2024
    risk 0.00cvss epss 0.01

    Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's position is that Ghost should be installed with a reverse proxy that allows only trusted…

  • CVE-2024-34448May 22, 2024
    risk 0.00cvss epss 0.01

    Ghost before 5.82.0 allows CSV Injection during a member CSV export.

  • CVE-2024-23725Jan 21, 2024
    risk 0.00cvss epss 0.00

    Ghost before 5.76.0 allows XSS via a post excerpt in excerpt.js. An XSS payload can be rendered in post summaries.

  • CVE-2023-31133May 8, 2023
    risk 0.00cvss epss 0.46

    Ghost is an app for new-media creators with tools to build a website, publish content, send newsletters, and offer paid subscriptions to members. Prior to version 5.46.1, due to a lack of validation when filtering on the public API endpoints, it is possible to reveal private…

  • CVE-2023-26510Mar 5, 2023
    risk 0.00cvss epss 0.01

    Ghost 5.35.0 allows authorization bypass: contributors can view draft posts of other users, which is arguably inconsistent with a security policy in which a contributor's draft can only be read by editors until published by an editor. NOTE: the vendor's position is that this…

  • CVE-2022-47197Jan 19, 2023
    risk 0.00cvss epss 0.01

    An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To…

  • CVE-2022-47196Jan 19, 2023
    risk 0.00cvss epss 0.01

    An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To…

  • CVE-2022-47195Jan 19, 2023
    risk 0.00cvss epss 0.01

    An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To…

  • CVE-2022-47194Jan 19, 2023
    risk 0.00cvss epss 0.01

    An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations of Ghost allow non-administrator users to inject arbitrary Javascript in posts, which allow privilege escalation to administrator via XSS. To…

  • CVE-2022-41654Dec 23, 2022
    risk 0.00cvss epss 0.19

    An authentication bypass vulnerability exists in the newsletter subscription functionality of Ghost Foundation Ghost 5.9.4. A specially-crafted HTTP request can lead to increased privileges. An attacker can send an HTTP request to trigger this vulnerability.

  • CVE-2022-27139Apr 12, 2022
    risk 0.00cvss epss 0.04

    An arbitrary file upload vulnerability in the file upload module of Ghost v4.39.0 allows attackers to execute arbitrary code via a crafted SVG file. NOTE: Vendor states that as outlined in Ghost's security documentation, upload of SVGs is only possible by trusted authenticated…

  • CVE-2021-39192Sep 3, 2021
    risk 0.00cvss epss 0.01

    Ghost is a Node.js content management system. An error in the implementation of the limits service between versions 4.0.0 and 4.9.4 allows all authenticated users (including contributors) to view admin-level API keys via the integrations API endpoint, leading to a privilege…

  • CVE-2021-29484Apr 29, 2021
    risk 0.00cvss epss 0.08

    Ghost is a Node.js CMS. An unused endpoint added during the development of 4.0.0 has left sites vulnerable to untrusted users gaining access to Ghost Admin. Attackers can gain access by getting logged in users to click a link containing malicious code. Users do not need to enter…

  • CVE-2020-35185Dec 17, 2020
    risk 0.00cvss epss 0.03

    The official ghost docker images before 2.16.1-alpine (Alpine specific) contain a blank password for a root user. System using the ghost docker container deployed by affected versions of the docker image may allow a remote attacker to achieve root access with a blank password.