Package impact
npm / ghost
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26980 | high | 7.5 | 7.5 | 3mo ago | Ghost has a SQL injection in Content API | |||
| CVE-2026-22597 | low | 2.7 | 2.7 | 5mo ago | Ghost has SSRF via External Media Inliner |
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-26980 | high | 7.5 | 7.5 | 3mo ago | Ghost has a SQL injection in Content API | |||
| CVE-2026-22597 | low | 2.7 | 2.7 | 5mo ago | Ghost has SSRF via External Media Inliner |