CVE-2023-32235

Name of the Vulnerable Software and Affected Versions Ghost versions prior to 5.42.1

Description The issue allows remote attackers to read arbitrary files within the active theme's folder via directory traversal using the /assets/built%2F..%2F..%2F/ endpoint. This occurs in the frontend/web/middleware/static-theme.js file.

Recommendations For Ghost versions prior to 5.42.1, update to version 5.42.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the /assets/built/ endpoint to minimize the risk of exploitation.