Количество 3
Количество 3
CVE-2024-34451
Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's position is that Ghost should be installed with a reverse proxy that allows only trusted X-Forwarded-For headers.
CVE-2024-34451
Ghost through 5.85.1 allows remote attackers to bypass an authenticati ...
GHSA-q373-f6gj-mw99
Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's position is that Ghost should be installed with a reverse proxy that allows only trusted X-Forwarded-For headers.
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-34451 Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's position is that Ghost should be installed with a reverse proxy that allows only trusted X-Forwarded-For headers. | CVSS3: 9.1 | 1% Низкий | больше 1 года назад |
| CVE-2024-34451 Ghost through 5.85.1 allows remote attackers to bypass an authenticati ... | CVSS3: 9.1 | 1% Низкий | больше 1 года назад |
| GHSA-q373-f6gj-mw99 Ghost through 5.85.1 allows remote attackers to bypass an authentication rate-limit protection mechanism by using many X-Forwarded-For headers with different values. NOTE: the vendor's position is that Ghost should be installed with a reverse proxy that allows only trusted X-Forwarded-For headers. | CVSS3: 9.1 | 1% Низкий | больше 1 года назад |
Уязвимостей на страницу