Cpaczek

**Name of the Vulnerable Software and Affected Versions** Ghost versions prior to 5.46.1 **Description** The issue is due to a lack of validation when filtering on the public API endpoints, making it possible to reveal private fields via a brute force attack. Ghost(Pro) has already been patched, and there is no evidence that the issue was exploited on Ghost(Pro) prior to the patch being added. Self-hosters are impacted if running Ghost a version below v5.46.1. **Recommendations** For Ghost versions prior to 5.46.1, update to version 5.46.1 to resolve the issue. As a temporary workaround, consider adding a block for requests to "/ghost/api/content/*" where the `filter` query parameter contains `password` or `email`.

**Name of the Vulnerable Software and Affected Versions** Payload versions prior to 1.7.0 **Description** The issue allows a user to reverse-engineer hidden field values via brute force if they have access to documents containing these fields. This can be done by attempting to access hidden field data through `where` queries. **Recommendations** For versions prior to 1.7.0, update to version 1.7.0 to resolve the issue. As a temporary workaround for versions prior to 1.7.0, consider writing a `beforeOperation` hook to remove `where` queries that attempt to access hidden field data. Monitor your instance for brute-force style requests against your instance using `where` queries to detect potential compromise.