CVE-2024-34451 | Ghost up to 5.85.1 Header X-Forwarded-For protection mechanism

Posted by Angelo Barbosa | Jun 17, 2024 | CVE

A vulnerability classified as problematic was found in Ghost up to 5.85.1. This vulnerability affects unknown code of the component Header Handler. The manipulation of the argument X-Forwarded-For leads to protection mechanism failure.

This vulnerability was named CVE-2024-34451. The attack can be initiated remotely. There is no exploit available.

The real existence of this vulnerability is still doubted at the moment.

It is recommended to upgrade the affected component.

CVE-2024-34451 | Ghost up to 5.85.1 Header X-Forwarded-For protection mechanism

Related Posts

CVE-2024-4460 | ZenML up to 0.57.0 resource consumption

CVE-2024-3595 | Pure Chat Plugin up to 2.22 on WordPress cross site scripting

CVE-2023-4553 | OpenText AppBuilder up to 23.1 Configuration File information disclosure

CVE-2023-47707 | IBM Security Guardium Key Lifecycle Manager 4.3 Web UI cross site scripting (XFDB-271522)