pkg:npm/@tryghost/portal
2 total CVEsHIGH1MEDIUM1
✅ Check your installed version
All known vulnerabilities
HIGH8.8CVE-2026-24778Ghost vulnerable to XSS via malicious Portal preview links >= 2.29.1, < 2.51.5
MEDIUM6.5CVE-2024-43409Ghost's improper authentication allows access to member information and actions >= 1.22.2, < 2.39.0