Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
Authentication bypass and enumeration vulnerabilities in Ghost CMS
Malware and Vulnerabilities
December 22, 2022
Cisco Talos
CVE-2022-41654 allows external users to update their newsletter preferences too liberally, which could allow a user full access to create and modify newsletters, including the default sent to all members.
Read More
Authentication Bypass
Enumeration Vulnerability
Ghost CMS
CVE-2022-41654
CVE-2022-41697
Publisher
Previous
US Most Impacted by Data Breaches in the Financial Indu ...
Trends, Reports, Analysis
Next
NASA infosec again falls short of required standard
Govt., Critical Infrastructure
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_165319127.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_197808329.jpg)
