BIT-ghost-2026-22595

See a problem?

Import Source

https://github.com/bitnami/vulndb/tree/main/data/ghost/BIT-ghost-2026-22595.json

JSON Data

https://api.test.osv.dev/v1/vulns/BIT-ghost-2026-22595

Aliases

Published

2026-01-13T08:40:23.758Z

Modified

2026-01-13T09:26:25.470363Z

Summary

Ghost has Staff Token permission bypass

Details

Ghost is a Node.js content management system. In versions 5.121.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's handling of Staff Token authentication allowed certain endpoints to be accessed that were only intended to be accessible via Staff Session authentication. External systems that have been authenticated via Staff Tokens for Admin/Owner-role users would have had access to these endpoints. This issue has been patched in versions 5.130.6 and 6.11.0.

Database specific

{
    "severity": "High",
    "cpes": [
        "cpe:2.3:a:ghost:ghost:*:*:*:*:*:node.js:*:*"
    ]
}

References

Affected packages

Bitnami / ghost

Package

Name: ghost
Purl: pkg:bitnami/ghost

Severity

8.1 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H CVSS Calculator

Affected ranges

Type: SEMVER
Events: Introduced

5.121.0

Fixed

5.130.6

Introduced

6.0.0

Fixed

6.11.0

Database specific

source

"https://github.com/bitnami/vulndb/tree/main/data/ghost/BIT-ghost-2026-22595.json"