Security News > 2022 > December > Ghost CMS vulnerable to critical authentication bypass flaw
2022-12-23 08:12
A critical vulnerability in the Ghost CMS newsletter subscription system could allow external users to create newsletters or modify existing ones so that they contain malicious JavaScript. [...]
News URL
Related news
- Critical auth bypass bug in CrushFTP now exploited in attacks (source)
- ASUS warns of critical auth bypass flaw in routers using AiCloud (source)
- Hackers Exploit Critical Craft CMS Flaws; Hundreds of Servers Likely Compromised (source)
- Ivanti warns of critical Neurons for ITSM auth bypass flaw (source)
- Unpatched critical bugs in Versa Concerto lead to auth bypass, RCE (source)