CVE-2026-26980
Source: nvd.nist.gov
Published:
<p>Ghost is a Node.js content management system. Versions 3.24.0 through 6.19.0 allow unauthenticated attackers to perform arbitrary reads from the database. This issue has been fixed in version 6.19.1.</p> <p>Denotes Vulnerable Software Are we missing a CPE here? Please let us know .</p>