all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Ghost CMS vulnerable to critical authentication bypass flaw

Add to bookmarks
Dec. 23, 2022, 8:12 a.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

A critical vulnerability in the Ghost CMS newsletter subscription system could allow external users to create newsletters or modify existing ones so that they contain malicious JavaScript. [...]

authentication authentication bypass authentication bypass flaw bypass cms critical flaw ghost security vulnerable

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Brave says May 2024 was its biggest growth month ever 12 hours ago | www.bleepingcomputer.com
brave brave browser browser growth +3
Malicious VSCode extensions with millions of installs discovered 15 hours ago | www.bleepingcomputer.com
code copy extensions found +18
New York Times source code stolen using exposed GitHub token 1 day, 12 hours ago | www.bleepingcomputer.com
4chan bleepingcomputer board code +20
DDoS attacks target EU political parties as elections begin 1 day, 15 hours ago | www.bleepingcomputer.com
artificial intelligence attacks cloudflare ddos +9
LastPass says 12-hour outage caused by bad Chrome extension update 2 days, 7 hours ago | www.bleepingcomputer.com
bad chrome chrome extension extension +6
Apple to unveil new 'Passwords' password manager app for iPhones, Macs 2 days, 10 hours ago | www.bleepingcomputer.com
app apple conference developers +11
Christie's starts notifying clients of RansomHub data breach 2 days, 10 hours ago | www.bleepingcomputer.com
auction breach british christie +12
Frontier warns 750,000 of a data breach after extortion threats 2 days, 11 hours ago | www.bleepingcomputer.com
april breach communications customers +13
Microsoft makes Windows Recall opt-in, secures data with Windows Hello 2 days, 13 hours ago | www.bleepingcomputer.com
ai-powered copilot copilot+ pcs customer +14

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel
View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States
View on infosec-jobs.com