CVE-2023-40028

Name of the Vulnerable Software and Affected Versions Ghost versions prior to 5.59.1

Description The issue allows authenticated users to upload files that are symlinks, which can be exploited to perform an arbitrary file read of any file on the host operating system. Site administrators can check for exploitation by looking for unknown symlinks within Ghost's content/ folder.

Recommendations For versions prior to 5.59.1, upgrade to version 5.59.1 to resolve the issue. As a temporary workaround, consider monitoring the content/ folder for unknown symlinks and restricting file upload capabilities to trusted users until the upgrade can be applied.