CVE-2026-29053, Ghost Vulnerable to Remote Code Execution via Malicious Themes
Source: Endorlabs
Published:
<p>Specifically crafted malicious themes can execute arbitrary code on the server running Ghost.</p> <p>This vulnerability is present in Ghost v0.7.2 to v6.19.0.</p> <p>v6.19.1 contains a fix for this issue.</p> <p>Ghost generally recommends users refrain from installing untrusted themes. If a malic