Количество 3
Количество 3
CVE-2026-22596
Ghost is a Node.js content management system. In versions 5.90.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's /ghost/api/admin/members/events endpoint allows users with authentication credentials for the Admin API to execute arbitrary SQL. This issue has been patched in versions 5.130.6 and 6.11.0.
CVE-2026-22596
Ghost is a Node.js content management system. In versions 5.90.0 throu ...
GHSA-gjrp-xgmh-x9qq
Ghost has SQL Injection in Members Activity Feed
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2026-22596 Ghost is a Node.js content management system. In versions 5.90.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's /ghost/api/admin/members/events endpoint allows users with authentication credentials for the Admin API to execute arbitrary SQL. This issue has been patched in versions 5.130.6 and 6.11.0. | CVSS3: 6.7 | 0% Низкий | 10 дней назад |
| CVE-2026-22596 Ghost is a Node.js content management system. In versions 5.90.0 throu ... | CVSS3: 6.7 | 0% Низкий | 10 дней назад |
| GHSA-gjrp-xgmh-x9qq Ghost has SQL Injection in Members Activity Feed | CVSS3: 6.7 | 0% Низкий | 12 дней назад |
Уязвимостей на страницу