CVE-2026-29784 | TryGhost up to 6.19.2 /session/verify cross-site request forgery

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability classified as problematic was found in TryGhost Ghost up to 6.19.2. Affected is an unknown function of the file /session/verify. Executing a manipulation can lead to cross-site request forgery.

This vulnerability appears as CVE-2026-29784. The attack may be performed from remote. There is no available exploit.

Upgrading the affected component is advised.

CVE-2026-29784 | TryGhost up to 6.19.2 /session/verify cross-site request forgery

Post correlati

CVE-2024-11295 | Simple Page Access Restriction Plugin up to 1.0.29 on WordPress access control

CVE-2024-45401 | stripe-cli up to 1.21.2 Manifest path traversal (GHSA-fv4g-gwpj-74gr)

CVE-2025-6228 | Sina Extension for Elementor Plugin up to 3.7.0 on WordPress Sina Posts/Sina Blog Post/Sina Table cross site scripting

CVE-2020-27352 | Canonical snapd up to 2.48.2 privilege context switching error (USN-4728-1)