Количество 3
Количество 3
CVE-2024-43409
Ghost is a Node.js content management system. Improper authentication on some endpoints used for member actions would allow an attacker to perform member-only actions, and read member information. This security vulnerability is present in Ghost v4.46.0-v5.89.4. v5.89.5 contains a fix for this issue.
CVE-2024-43409
Ghost is a Node.js content management system. Improper authentication ...
GHSA-78x2-cwp9-5j42
Ghost's improper authentication allows access to member information and actions
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2024-43409 Ghost is a Node.js content management system. Improper authentication on some endpoints used for member actions would allow an attacker to perform member-only actions, and read member information. This security vulnerability is present in Ghost v4.46.0-v5.89.4. v5.89.5 contains a fix for this issue. | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| CVE-2024-43409 Ghost is a Node.js content management system. Improper authentication ... | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
| GHSA-78x2-cwp9-5j42 Ghost's improper authentication allows access to member information and actions | CVSS3: 6.5 | 0% Низкий | больше 1 года назад |
Уязвимостей на страницу