Package impact
npm / ghost
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26980 | high | 7.5 | 8.5 | 3mo ago | Ghost has a SQL injection in Content API | |||
| CVE-2023-40028 | unknown | — | 1.0 | 3y ago | Ghost vulnerable to arbitrary file read via symlinks in content import | |||
| CVE-2023-32235 | unknown | — | 1.0 | 3y ago | Path Traversal in Ghost |