What is CVE-2021-29484?

CVE-2021-29484 is a medium-severity vulnerability in Tryghost Ghost, classified under Cross-site Scripting. CVSS score: 6.8/10. Published 2021-04-29.

How severe is CVE-2021-29484?

Medium severity. CVSS v3 base score is 6.8 out of 10.

Is CVE-2021-29484 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

XSS in Tryghost Ghost

CVE-2021-29484

Ghost is a Node.js CMS. An unused endpoint added during the development of 4.0.0 has left sites vulnerable to untrusted users gaining access to Ghost Admin. Attackers can gain access by getting logged in users to click a link containing ma…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.570 (98.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.8 (Medium). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N.

Affected products

Tryghost Ghost — versions >= 4.0.0, < 4.3.3

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

Public proof-of-concept exploits

References

github.com/TryGhost/Ghost/security/advisories/GHSA-9fgx-q25h-jxrg (x_refsource_CONFIRM)
forum.ghost.org/t/critical-security-update-available-for-ghost-4-x/22290 (x_refsource_MISC)
www.npmjs.com/package/ghost (x_refsource_MISC)
blog.sonarsource.com/ghost-admin-takeover (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2021-29484?: CVE-2021-29484 is a medium-severity vulnerability in Tryghost Ghost, classified under Cross-site Scripting. CVSS score: 6.8/10. Published 2021-04-29.
How severe is CVE-2021-29484?: Medium severity. CVSS v3 base score is 6.8 out of 10.
Is CVE-2021-29484 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.