Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

Ghost — Vulnerabilities & Security Advisories 23

All 23 CVE vulnerabilities found in Ghost, with AI-generated Chinese analysis, references, and POCs.

Vendor: n/a

CVE IDTitleCVSSSeverityPaused
CVE-2026-29784 Ghost: Incomplete CSRF protections around OTC use CWE-352 7.5 High2026-03-07
CVE-2026-29053 Ghost Vulnerable to Remote Code Execution via Malicious Themes CWE-74 7.7 High2026-03-05
CVE-2026-26365 Akamai Ghost 环境问题漏洞 CWE-444 4.0 Medium2026-02-23
CVE-2026-26980 Ghost has a SQL Injection in its Content API CWE-89 9.4 Critical2026-02-20
CVE-2026-24778 Ghost vulnerable to XSS via malicious Portal preview links CWE-79 8.8 High2026-01-27
CVE-2026-22597 Ghost has SSRF via External Media Inliner CWE-918 6.5 -2026-01-10
CVE-2026-22596 Ghost has SQL Injection in Members Activity Feed CWE-89 6.7 Medium2026-01-10
CVE-2026-22595 Ghost has Staff Token permission bypass CWE-863 8.1 High2026-01-10
CVE-2026-22594 Ghost has Staff 2FA bypass CWE-287 8.1 High2026-01-10
CVE-2025-9862 Ghost 6.0.6 - SSRF via oEmbed Bookmark CWE-918 7.5AIHighAI2025-09-17
CVE-2024-43409 Ghost's improper authentication allows access to member information and actions CWE-284 6.5 Medium2024-08-20
CVE-2024-34559 WordPress Ghost plugin <= 1.4.0 - Sensitive Data Exposure via Log File vulnerability CWE-532 7.5 High2024-05-09
CVE-2023-40028 Arbitrary file read via symlinks in Ghost CWE-22 4.9 Medium2023-08-15
CVE-2023-31133 Ghost vulnerable to disclosure of private API fields CWE-200 7.5 High2023-05-08
CVE-2022-47197 Ghost Foundation Ghost 跨站脚本漏洞 CWE-453 5.4 -2023-01-19
CVE-2022-47196 Ghost Foundation Ghost 安全漏洞 CWE-453 5.4 -2023-01-19
CVE-2022-47195 Ghost Foundation Ghost 跨站脚本漏洞 CWE-453 5.4 -2023-01-19
CVE-2022-47194 Ghost Foundation Ghost 安全漏洞 CWE-453 5.4 -2023-01-19
CVE-2022-41697 Ghost CMS 安全漏洞 CWE-204 5.3 -2022-12-23
CVE-2022-41654 Ghost CMS访问控制错误漏洞 CWE-284 8.1 -2022-12-23
CVE-2021-39192 Privilege escalation: all users can access Admin-level API keys CWE-200 6.5 Medium2021-09-03
CVE-2021-29484 DOM XSS in Theme Preview CWE-79 6.8 Medium2021-04-29
CVE-2020-8134 Ghost CMS 代码问题漏洞 CWE-918 7.5 -2020-03-20

All 23 known CVE vulnerabilities affecting Ghost with full Chinese analysis, references, and POCs where available.