Filter
-Infinity
0

Trending

Last week
Last month
Last year

npm/@tryghost/portalGhost's improper authentication allows access to member information and actions

medium
6.5
First published (updated )
CVE-2024-43409

npm/ghostXSS

critical
9
EPSS
0.04%
First published (updated )
CVE-2024-23724

npm/ghostXSS

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2024-23725

npm/ghostArbitrary file read via symlinks in Ghost

medium
6.5
First published (updated )
CVE-2023-40028

npm/ghostPath Traversal

high
7.5
First published (updated )
CVE-2023-32235

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

npm/ghostGhost vulnerable to disclosure of private API fields

high
7.5
First published (updated )
CVE-2023-31133

SQLiteBuffer Overflow, SQL Injection

medium
5.5
First published (updated )
CVE-2020-24736

SQLiteSQL Injection

critical
9.8
First published (updated )
CVE-2022-43441

Ghost Ghost Node.jsGhost 5.35.0 allows authorization bypass: contributors can view draft posts of other users, which is…

medium
5.7
First published (updated )
CVE-2023-26510

Ghost Ghost Node.jsXSS

critical
9
First published (updated )
CVE-2022-47197

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ghost Ghost Node.jsXSS

critical
9
First published (updated )
CVE-2022-47196

Ghost Ghost Node.jsXSS

critical
9
First published (updated )
CVE-2022-47195

Ghost Ghost Node.jsXSS

critical
9
First published (updated )
CVE-2022-47194

GhostAn authentication bypass vulnerability exists in the newsletter subscription functionality of Ghost …

critical
9.6
First published (updated )
CVE-2022-41654

Ghost Ghost Node.jsA user enumeration vulnerability exists in the login functionality of Ghost Foundation Ghost 5.9.4. …

medium
5.3
First published (updated )
CVE-2022-41697

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

SQLiteDenial of Service (DoS)

high
7.5
First published (updated )
CVE-2022-21227

npm/ghostMalicious File Upload

critical
9.8
First published (updated )
CVE-2022-28397

Ghost Ghost Node.jsMalicious File Upload

critical
9.8
First published (updated )
CVE-2022-27139

Ghost Ghost Node.jsPrivilege escalation: all users can access Admin-level API keys

high
7.2
First published (updated )
CVE-2021-39192

Ghost Ghost Node.jsDOM XSS in Theme Preview

medium
6.8
First published (updated )
CVE-2021-29484

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Ghost Ghost Node.jsSSRF

high
8.1
First published (updated )
CVE-2020-8134

Ghost Foundation GhostThe ghost plugin before 0.5.6 for WordPress has no access control for wp-admin/tools.php?ghostexport…

medium
6.5
First published (updated )
CVE-2016-10983

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203