CVE-2026-22595HIGH 8.1EPSS p38.5%

CVE-2026-22595CVE-2026-22595

Description

Ghost is a Node.js content management system. In versions 5.121.0 through 5.130.5 and 6.0.0 through 6.10.3, a vulnerability in Ghost's handling of Staff Token authentication allowed certain endpoints to be accessed that were only intended to be accessible via Staff Session authentication. External systems that have been authenticated via Staff Tokens for Admin/Owner-role users would have had access to these endpoints. This issue has been patched in versions 5.130.6 and 6.11.0.

Scoring

CVSS 3.18.1 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
EPSS0.49% probability of exploitation · percentile 38.5% · 2026-06-19T12:03:05Z
Published2026-01-10
Last modified2026-01-15

Underlying weaknesses· 1

CWE-863

References

  1. https://github.com/TryGhost/Ghost/commit/9513d2a35c21067127ce8192443d8919ddcefcc8
  2. https://github.com/TryGhost/Ghost/commit/c3017f81a5387b253a7b8c1ba1959d430ee536a3
  3. https://github.com/TryGhost/Ghost/security/advisories/GHSA-9xg7-mwmp-xmjx

1

TypeTargetConfidenceTier
WeaknessIncorrect Authorizationcwe-8630%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-22594
CVE
CVE-2026-29053
CVE
CVE-2026-29784
CVE
CVE-2025-26909
CVE
CVE-2026-32267
CVE
CVE-2025-26201
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.