Description
A DOM XSS vulnerability exists in a special endpoint of Ghost CMS used only during the development of 4.0.0. The endpoint interacts with its DOM in an insecure way.
Remediation
Upgrade to the latest version of Ghost CMS
References
Related Vulnerabilities
WordPress Plugin Hostel Cross-Site Scripting (1.1.3)
WordPress Plugin WordPress Content Slide Multiple Vulnerabilities (1.4.2)
WordPress Plugin Woocommerce Payment Gateway per Category Cross-Site Scripting (2.0.10)
WordPress Plugin Esponce QR Code Generator Cross-Site Scripting (1.4)
WordPress Plugin Contact Bank-Contact Form Builder for WordPress Cross-Site Scripting (3.0.30)