CVE-2025-9862

Опубликовано: 17 сент. 2025

Источник: debian

Описание

Server-Side Request Forgery (SSRF) vulnerability in Ghost allows an attacker to access internal resources.This issue affects Ghost: from 6.0.0 through 6.0.8, from 5.99.0 through 5.130.3.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
ghost	itp			package

Связанные уязвимости

CVE-2025-9862

CVSS3: 6.5

nvd

5 месяцев назад

Server-Side Request Forgery (SSRF) vulnerability in Ghost allows an attacker to access internal resources.This issue affects Ghost: from 6.0.0 through 6.0.8, from 5.99.0 through 5.130.3.

GHSA-f7qg-xj45-w956

github

5 месяцев назад

Ghost vulnerable to Server Side Request Forgery (SSRF) via oEmbed Bookmark