Limited Black Friday Offer:

Ghost CMS < 5.42.1 - Path Traversal Vulnerability CVE-2023-32235 Scanner

There is a path traversal vulnerability in Ghost CMS < 5.42.1, which allow remote attackers to read arbitrary files.

Short Info

Level

High

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

Ghost CMS < 5.42.1 - Path Traversal Vulnerability CVE-2023-32235 Scanner Detail

Ghost before 5.42.1 allows remote attackers to read arbitrary files within the active theme's folder via /assets/built%2F..%2F..%2F/ directory traversal. This occurs in frontend/web/middleware/static-theme.js.

https://github.com/TryGhost/Ghost/commit/378dd913aa8d0fd0da29b0ffced8884579598b0f
https://github.com/TryGhost/Ghost/compare/v5.42.0...v5.42.1