CVE-2026-29784

>= 5.101.6 and < 6.19.3

Ghost is a Node.js content management system. From version 5.101.6 to 6.19.2, incomplete CSRF protections around /session/verify m

7.5HIGH

CVE-2026-29053

>= 0.7.2 and < 6.19.1

Ghost is a Node.js content management system. From version 0.7.2 to 6.19.0, specifically crafted malicious themes can execute arbi

7.6HIGH

CVE-2026-26980

>= 3.24.0 and < 6.19.1

Ghost is a Node.js content management system. Versions 3.24.0 through 6.19.0 allow unauthenticated attackers to perform arbitrary

9.4CRITICAL

CVE-2026-24778

>= 5.43.0 and < 5.121.0

Ghost is an open source content management system. In Ghost versions 5.43.0 through 5.12.04 and 6.0.0 through 6.14.0, an attacker

8.8HIGH

CVE-2026-22597

>= 5.38.0 and < 5.130.6

Ghost is a Node.js content management system. In versions 5.38.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghos

2.7LOW

CVE-2026-22596

>= 5.90.0 and < 5.130.6

Ghost is a Node.js content management system. In versions 5.90.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghos

6.7MEDIUM

CVE-2026-22595

>= 5.121.0 and < 5.130.6

Ghost is a Node.js content management system. In versions 5.121.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Gho

8.1HIGH

CVE-2026-22594

>= 5.105.0 and < 5.130.6

Ghost is a Node.js content management system. In versions 5.105.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Gho

8.1HIGH

CVE-2025-9862

>= 5.99.0 and <= 5.130.3

Server-Side Request Forgery (SSRF) vulnerability in Ghost allows an attacker to access internal resources.This issue affects Ghost

6.5MEDIUM

CVE-2024-43409

>= 4.46.0 and < 5.89.5

Ghost is a Node.js content management system. Improper authentication on some endpoints used for member actions would allow an att

6.5MEDIUM

CVE-2024-34451

<= 5.85.1

Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded

9.1CRITICAL

CVE-2024-34448

< 5.82.0

Ghost before 5.82.0 allows CSV Injection during a member CSV export.

8.8HIGH

CVE-2024-23724

<= 5.76.0

Ghost through 5.76.0 allows stored XSS, and resultant privilege escalation in which a contributor can take over any account, via a

9.0CRITICAL

CVE-2024-23725

< 5.76.0

Ghost before 5.76.0 allows XSS via a post excerpt in excerpt.js. An XSS payload can be rendered in post summaries.

6.1MEDIUM

CVE-2023-40028

< 5.59.1

Ghost is an open source content management system. Versions prior to 5.59.1 are subject to a vulnerability which allows authentica

4.9MEDIUM

CVE-2023-31133

< 5.46.1

Ghost is an app for new-media creators with tools to build a website, publish content, send newsletters, and offer paid subscripti

7.5HIGH

CVE-2023-32235

< 5.42.1

Ghost before 5.42.1 allows remote attackers to read arbitrary files within the active theme's folder via /assets/built%2F..%2F..%2

7.5HIGH

CVE-2020-24736

all versions

Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a craf

5.5MEDIUM

CVE-2022-43441

>= 5.0.0 and < 5.1.5

A code execution vulnerability exists in the Statement Bindings functionality of Ghost Foundation node-sqlite3 5.1.1. A specially-

8.1HIGH

CVE-2023-26510

all versions

Ghost 5.35.0 allows authorization bypass: contributors can view draft posts of other users, which is arguably inconsistent with a

5.7MEDIUM

CVE-2022-47197

all versions

An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations

5.4MEDIUM

CVE-2022-47196

all versions

An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations

5.4MEDIUM

CVE-2022-47195

all versions

An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations

5.4MEDIUM

CVE-2022-47194

all versions

An insecure default vulnerability exists in the Post Creation functionality of Ghost Foundation Ghost 5.9.4. Default installations

5.4MEDIUM

CVE-2022-41697

all versions

A user enumeration vulnerability exists in the login functionality of Ghost Foundation Ghost 5.9.4. A specially-crafted HTTP reque

5.3MEDIUM

CVE-2022-41654

>= 4.46.0 and < 4.48.8

An authentication bypass vulnerability exists in the newsletter subscription functionality of Ghost Foundation Ghost 5.9.4. A spec

4.3MEDIUM

CVE-2022-21227

< 5.0.3

The package sqlite3 before 5.0.3 are vulnerable to Denial of Service (DoS) which will invoke the toString function of the passed p

7.5HIGH

CVE-2022-28397

all versions

An arbitrary file upload vulnerability in the file upload module of Ghost CMS v4.42.0 allows attackers to execute arbitrary code v

9.8CRITICAL

CVE-2022-27139

all versions

An arbitrary file upload vulnerability in the file upload module of Ghost v4.39.0 allows attackers to execute arbitrary code via a

9.8CRITICAL

CVE-2022-21687

< 1.1.3

gh-ost is a triggerless online schema migration solution for MySQL. Versions prior to 1.1.3 are subject to an arbitrary file read

6.8MEDIUM

CVE-2021-39192

>= 4.0.0 and < 4.10.0

Ghost is a Node.js content management system. An error in the implementation of the limits service between versions 4.0.0 and 4.9.

6.5MEDIUM

CVE-2021-29484

>= 4.0.0 and < 4.3.3

Ghost is a Node.js CMS. An unused endpoint added during the development of 4.0.0 has left sites vulnerable to untrusted users gain

6.8MEDIUM

CVE-2020-8134

< 3.10.0

Server-side request forgery (SSRF) vulnerability in Ghost CMS < 3.10.0 allows an attacker to scan local or external network or oth

8.1HIGH

CVE-2016-10983

< 0.5.6

The ghost plugin before 0.5.6 for WordPress has no access control for wp-admin/tools.php?ghostexport=true downloads of exported da

6.5MEDIUM