Vulnerabilities > Ghost

DATE CVE VULNERABILITY TITLE RISK
2019-09-17 CVE-2016-10983 Improper Authentication vulnerability in Ghost
The ghost plugin before 0.5.6 for WordPress has no access control for wp-admin/tools.php?ghostexport=true downloads of exported data.
network
low complexity
ghost CWE-287
6.5