CVE-2026-29053
Published
CVSS v3
7.6
HIGH
CVSS v2
N/A
Affected
1
PROJECT
Description
Ghost is a Node.js content management system. From version 0.7.2 to 6.19.0, specifically crafted malicious themes can execute arbitrary code on the server running Ghost. This issue has been patched in version 6.19.1.
Independent technology for modern publishing, memberships, subscriptions and newsletters.
GitHub