Описание
Ghost is a Node.js content management system. Versions 3.24.0 through 6.19.0 allow unauthenticated attackers to perform arbitrary reads from the database. This issue has been fixed in version 6.19.1.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ghost | itp | package |
EPSS
Процентиль: 12%
0.00039
Низкий
Связанные уязвимости
CVSS3: 9.4
nvd
около 1 месяца назад
Ghost is a Node.js content management system. Versions 3.24.0 through 6.19.0 allow unauthenticated attackers to perform arbitrary reads from the database. This issue has been fixed in version 6.19.1.
EPSS
Процентиль: 12%
0.00039
Низкий