Ghost is a Node.js content management system. From version 5.101.6 to 6.19.2, incomplete CSRF protections around /session/verify made it possible to use OTCs in login sessions different from the requesting session. In some scenarios this might have made it easier for phishers to take over a Ghost site. This issue has been patched in version 6.19.3.
oryginał ENCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:HGhost
APPGhost5.101.6 – 6.19.3 (bez)
Powiązane podatności
Ghost CMS: nieuwierzytelniony odczyt bazy danych przez SQL injection
Ghost CMS – obejście limitu prób uwierzytelnienia przez nagłówki X-Forwarded-For
Ghost CMS: stored XSS w pliku SVG umożliwia privilege escalation
An arbitrary file upload vulnerability in the file upload module of Ghost CMS v4.42.0 allows attackers to exec...
An arbitrary file upload vulnerability in the file upload module of Ghost v4.39.0 allows attackers to execute ...