{"id":"CVE-2024-43409","summary":"Ghost's improper authentication allows access to member information and actions","details":"Ghost is a Node.js content management system. Improper authentication on some endpoints used for member actions would allow an attacker to perform member-only actions, and read member information. This security vulnerability is present in Ghost v4.46.0-v5.89.4. v5.89.5 contains a fix for this issue.","aliases":["BIT-ghost-2024-43409","GHSA-78x2-cwp9-5j42"],"modified":"2026-03-20T12:38:58.076599Z","published":"2024-08-20T15:05:04.338Z","database_specific":{"osv_generated_from":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43409.json","cwe_ids":["CWE-284"],"cna_assigner":"GitHub_M"},"references":[{"type":"ADVISORY","url":"https://github.com/CVEProject/cvelistV5/tree/main/cves/2024/43xxx/CVE-2024-43409.json"},{"type":"ADVISORY","url":"https://github.com/TryGhost/Ghost/security/advisories/GHSA-78x2-cwp9-5j42"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2024-43409"},{"type":"FIX","url":"https://github.com/TryGhost/Ghost/commit/dac25612520b571f58679764ecc27109e641d1db"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/tryghost/ghost","events":[{"introduced":"67c5395a7f50779691beaee28941adc38553f348"},{"fixed":"eecd79a87519fb4d8006764f875c188f6a6862b8"},{"fixed":"dac25612520b571f58679764ecc27109e641d1db"}],"database_specific":{"versions":[{"introduced":"4.46.0"},{"fixed":"5.89.5"}]}}],"versions":["@tryghost/admin-x-settings@0.0.2","@tryghost/admin-x-settings@0.0.3","@tryghost/admin-x-settings@0.0.4","@tryghost/admin-x-settings@0.0.5","@tryghost/admin-x-settings@0.0.6","@tryghost/admin-x-settings@0.0.7","@tryghost/admin-x-settings@0.0.8","@tryghost/announcement-bar@1.1.6","@tryghost/announcement-bar@1.1.7","@tryghost/comments-ui@0.13.0","@tryghost/custom-theme-settings-service@0.0.1","@tryghost/custom-theme-settings-service@0.0.2","@tryghost/custom-theme-settings-service@0.0.3","@tryghost/custom-theme-settings-service@0.0.4","@tryghost/custom-theme-settings-service@0.0.5","@tryghost/custom-theme-settings-service@0.0.6","@tryghost/custom-theme-settings-service@0.1.0","@tryghost/custom-theme-settings-service@0.1.1","@tryghost/custom-theme-settings-service@0.1.2","@tryghost/custom-theme-settings-service@0.2.0","@tryghost/custom-theme-settings-service@0.3.0","@tryghost/custom-theme-settings-service@0.3.1","@tryghost/custom-theme-settings-service@0.3.2","@tryghost/custom-theme-settings-service@0.3.3","@tryghost/domain-events@0.1.0","@tryghost/domain-events@0.1.1","@tryghost/domain-events@0.1.10","@tryghost/domain-events@0.1.11","@tryghost/domain-events@0.1.12","@tryghost/domain-events@0.1.13","@tryghost/domain-events@0.1.14","@tryghost/domain-events@0.1.2","@tryghost/domain-events@0.1.3","@tryghost/domain-events@0.1.4","@tryghost/domain-events@0.1.5","@tryghost/domain-events@0.1.6","@tryghost/domain-events@0.1.7","@tryghost/domain-events@0.1.8","@tryghost/domain-events@0.1.9","@tryghost/email-analytics-provider-mailgun@1.0.0","@tryghost/email-analytics-provider-mailgun@1.0.0-rc.1","@tryghost/email-analytics-provider-mailgun@1.0.1","@tryghost/email-analytics-provider-mailgun@1.0.2","@tryghost/email-analytics-provider-mailgun@1.0.3","@tryghost/email-analytics-provider-mailgun@1.0.4","@tryghost/email-analytics-provider-mailgun@1.0.5","@tryghost/email-analytics-provider-mailgun@1.0.6","@tryghost/email-analytics-provider-mailgun@1.0.7","@tryghost/email-analytics-provider-mailgun@1.0.8","@tryghost/email-analytics-provider-mailgun@1.0.9","@tryghost/email-analytics-service@1.0.0","@tryghost/email-analytics-service@1.0.0-rc.1","@tryghost/email-analytics-service@1.0.1","@tryghost/email-analytics-service@1.0.2","@tryghost/email-analytics-service@1.0.3","@tryghost/email-analytics-service@1.0.4","@tryghost/email-analytics-service@1.0.5","@tryghost/email-analytics-service@1.0.6","@tryghost/email-analytics-service@1.0.7","@tryghost/express-dynamic-redirects@0.1.0","@tryghost/express-dynamic-redirects@0.2.0","@tryghost/express-dynamic-redirects@0.2.1","@tryghost/express-dynamic-redirects@0.2.10","@tryghost/express-dynamic-redirects@0.2.11","@tryghost/express-dynamic-redirects@0.2.12","@tryghost/express-dynamic-redirects@0.2.13","@tryghost/express-dynamic-redirects@0.2.2","@tryghost/express-dynamic-redirects@0.2.3","@tryghost/express-dynamic-redirects@0.2.4","@tryghost/express-dynamic-redirects@0.2.5","@tryghost/express-dynamic-redirects@0.2.6","@tryghost/express-dynamic-redirects@0.2.7","@tryghost/express-dynamic-redirects@0.2.8","@tryghost/express-dynamic-redirects@0.2.9","@tryghost/magic-link@0.1.0","@tryghost/magic-link@0.1.1","@tryghost/magic-link@0.1.2","@tryghost/magic-link@0.1.3","@tryghost/magic-link@0.1.4","@tryghost/magic-link@0.2.0","@tryghost/magic-link@0.2.1","@tryghost/magic-link@0.2.2","@tryghost/magic-link@0.3.0","@tryghost/magic-link@0.3.1","@tryghost/magic-link@0.3.2","@tryghost/magic-link@0.3.3","@tryghost/magic-link@0.4.0","@tryghost/magic-link@0.4.1","@tryghost/magic-link@0.4.10","@tryghost/magic-link@0.4.11","@tryghost/magic-link@0.4.12","@tryghost/magic-link@0.4.13","@tryghost/magic-link@0.4.2","@tryghost/magic-link@0.4.3","@tryghost/magic-link@0.4.4","@tryghost/magic-link@0.4.5","@tryghost/magic-link@0.4.6","@tryghost/magic-link@0.4.7","@tryghost/magic-link@0.4.8","@tryghost/magic-link@0.4.9","@tryghost/magic-link@0.5.0","@tryghost/magic-link@0.6.0","@tryghost/magic-link@0.6.1","@tryghost/magic-link@0.6.2","@tryghost/magic-link@0.6.3","@tryghost/magic-link@0.6.4","@tryghost/magic-link@0.6.5","@tryghost/magic-link@0.6.6","@tryghost/magic-link@0.6.7","@tryghost/magic-link@1.0.0","@tryghost/magic-link@1.0.1","@tryghost/magic-link@1.0.10","@tryghost/magic-link@1.0.11","@tryghost/magic-link@1.0.12","@tryghost/magic-link@1.0.13","@tryghost/magic-link@1.0.14","@tryghost/magic-link@1.0.15","@tryghost/magic-link@1.0.16","@tryghost/magic-link@1.0.17","@tryghost/magic-link@1.0.18","@tryghost/magic-link@1.0.19","@tryghost/magic-link@1.0.2","@tryghost/magic-link@1.0.20","@tryghost/magic-link@1.0.21","@tryghost/magic-link@1.0.22","@tryghost/magic-link@1.0.23","@tryghost/magic-link@1.0.24","@tryghost/magic-link@1.0.25","@tryghost/magic-link@1.0.26","@tryghost/magic-link@1.0.3","@tryghost/magic-link@1.0.4","@tryghost/magic-link@1.0.5","@tryghost/magic-link@1.0.6","@tryghost/magic-link@1.0.7","@tryghost/magic-link@1.0.8","@tryghost/magic-link@1.0.9","@tryghost/magic-link@1.1.0","@tryghost/member-analytics-service@0.1.0","@tryghost/member-analytics-service@0.1.1","@tryghost/member-analytics-service@0.1.10","@tryghost/member-analytics-service@0.1.11","@tryghost/member-analytics-service@0.1.12","@tryghost/member-analytics-service@0.1.13","@tryghost/member-analytics-service@0.1.14","@tryghost/member-analytics-service@0.1.15","@tryghost/member-analytics-service@0.1.16","@tryghost/member-analytics-service@0.1.2","@tryghost/member-analytics-service@0.1.3","@tryghost/member-analytics-service@0.1.4","@tryghost/member-analytics-service@0.1.5","@tryghost/member-analytics-service@0.1.6","@tryghost/member-analytics-service@0.1.7","@tryghost/member-analytics-service@0.1.8","@tryghost/member-analytics-service@0.1.9","@tryghost/member-events@0.1.0","@tryghost/member-events@0.2.0","@tryghost/member-events@0.2.1","@tryghost/member-events@0.3.0","@tryghost/member-events@0.3.1","@tryghost/member-events@0.3.2","@tryghost/member-events@0.3.3","@tryghost/member-events@0.3.4","@tryghost/member-events@0.3.5","@tryghost/member-events@0.4.0","@tryghost/member-events@0.4.1","@tryghost/member-events@0.4.2","@tryghost/member-events@0.4.3","@tryghost/member-events@0.4.4","@tryghost/member-events@0.4.5","@tryghost/member-events@0.4.6","@tryghost/members-analytics-ingress@0.1.0","@tryghost/members-analytics-ingress@0.1.1","@tryghost/members-analytics-ingress@0.1.10","@tryghost/members-analytics-ingress@0.1.11","@tryghost/members-analytics-ingress@0.1.12","@tryghost/members-analytics-ingress@0.1.13","@tryghost/members-analytics-ingress@0.1.14","@tryghost/members-analytics-ingress@0.1.15","@tryghost/members-analytics-ingress@0.1.16","@tryghost/members-analytics-ingress@0.1.17","@tryghost/members-analytics-ingress@0.1.2","@tryghost/members-analytics-ingress@0.1.3","@tryghost/members-analytics-ingress@0.1.4","@tryghost/members-analytics-ingress@0.1.5","@tryghost/members-analytics-ingress@0.1.6","@tryghost/members-analytics-ingress@0.1.7","@tryghost/members-analytics-ingress@0.1.8","@tryghost/members-analytics-ingress@0.1.9","@tryghost/members-api@0.1.1","@tryghost/members-api@0.1.2","@tryghost/members-api@0.10.1","@tryghost/members-api@0.10.2","@tryghost/members-api@0.11.0","@tryghost/members-api@0.11.1","@tryghost/members-api@0.11.2","@tryghost/members-api@0.11.3","@tryghost/members-api@0.11.4","@tryghost/members-api@0.12.0","@tryghost/members-api@0.13.0","@tryghost/members-api@0.14.0","@tryghost/members-api@0.14.1","@tryghost/members-api@0.14.2","@tryghost/members-api@0.15.0","@tryghost/members-api@0.15.1","@tryghost/members-api@0.16.0","@tryghost/members-api@0.16.1","@tryghost/members-api@0.16.2","@tryghost/members-api@0.17.0","@tryghost/members-api@0.18.0","@tryghost/members-api@0.18.1","@tryghost/members-api@0.18.2","@tryghost/members-api@0.18.3","@tryghost/members-api@0.18.4","@tryghost/members-api@0.18.5","@tryghost/members-api@0.18.7","@tryghost/members-api@0.19.0","@tryghost/members-api@0.2.0","@tryghost/members-api@0.20.0","@tryghost/members-api@0.20.1","@tryghost/members-api@0.21.0","@tryghost/members-api@0.22.0","@tryghost/members-api@0.23.0","@tryghost/members-api@0.23.1","@tryghost/members-api@0.23.2","@tryghost/members-api@0.24.0","@tryghost/members-api@0.24.1","@tryghost/members-api@0.24.2","@tryghost/members-api@0.24.3","@tryghost/members-api@0.24.4","@tryghost/members-api@0.24.5","@tryghost/members-api@0.25.0","@tryghost/members-api@0.25.1","@tryghost/members-api@0.25.2","@tryghost/members-api@0.26.0","@tryghost/members-api@0.27.0","@tryghost/members-api@0.27.1","@tryghost/members-api@0.27.2","@tryghost/members-api@0.28.0","@tryghost/members-api@0.28.1","@tryghost/members-api@0.28.2","@tryghost/members-api@0.28.3","@tryghost/members-api@0.29.0","@tryghost/members-api@0.3.0","@tryghost/members-api@0.30.0","@tryghost/members-api@0.30.1","@tryghost/members-api@0.31.0","@tryghost/members-api@0.32.0","@tryghost/members-api@0.33.0","@tryghost/members-api@0.33.1","@tryghost/members-api@0.33.2","@tryghost/members-api@0.33.3","@tryghost/members-api@0.34.0","@tryghost/members-api@0.34.1","@tryghost/members-api@0.34.2","@tryghost/members-api@0.35.0","@tryghost/members-api@0.36.0","@tryghost/members-api@0.37.0","@tryghost/members-api@0.37.1","@tryghost/members-api@0.37.10","@tryghost/members-api@0.37.11","@tryghost/members-api@0.37.2","@tryghost/members-api@0.37.3","@tryghost/members-api@0.37.4","@tryghost/members-api@0.37.5","@tryghost/members-api@0.37.6","@tryghost/members-api@0.37.7","@tryghost/members-api@0.37.8","@tryghost/members-api@0.37.9","@tryghost/members-api@0.4.0","@tryghost/members-api@0.4.1","@tryghost/members-api@0.5.0","@tryghost/members-api@0.5.1","@tryghost/members-api@0.5.2","@tryghost/members-api@0.5.3","@tryghost/members-api@0.6.0","@tryghost/members-api@0.6.1","@tryghost/members-api@0.6.2","@tryghost/members-api@0.7.0","@tryghost/members-api@0.7.1","@tryghost/members-api@0.7.2","@tryghost/members-api@0.7.3","@tryghost/members-api@0.7.4","@tryghost/members-api@0.7.5","@tryghost/members-api@0.7.6","@tryghost/members-api@0.7.7","@tryghost/members-api@0.8.0","@tryghost/members-api@0.8.1","@tryghost/members-api@0.8.2","@tryghost/members-api@0.8.3","@tryghost/members-api@0.9.0","@tryghost/members-api@1.0.0","@tryghost/members-api@1.0.0-rc.4","@tryghost/members-api@1.0.0-rc.5","@tryghost/members-api@1.1.0","@tryghost/members-api@1.1.1","@tryghost/members-api@1.10.0","@tryghost/members-api@1.11.0","@tryghost/members-api@1.11.1","@tryghost/members-api@1.12.0","@tryghost/members-api@1.13.0","@tryghost/members-api@1.13.1","@tryghost/members-api@1.14.0","@tryghost/members-api@1.15.0","@tryghost/members-api@1.16.0","@tryghost/members-api@1.17.0","@tryghost/members-api@1.18.0","@tryghost/members-api@1.18.1","@tryghost/members-api@1.19.0","@tryghost/members-api@1.2.0","@tryghost/members-api@1.20.0","@tryghost/members-api@1.20.1","@tryghost/members-api@1.20.2","@tryghost/members-api@1.20.3","@tryghost/members-api@1.21.0","@tryghost/members-api@1.22.0","@tryghost/members-api@1.22.1","@tryghost/members-api@1.23.0","@tryghost/members-api@1.23.1","@tryghost/members-api@1.23.2","@tryghost/members-api@1.23.3","@tryghost/members-api@1.24.0","@tryghost/members-api@1.24.1","@tryghost/members-api@1.25.0","@tryghost/members-api@1.25.1","@tryghost/members-api@1.25.2","@tryghost/members-api@1.26.0","@tryghost/members-api@1.27.0","@tryghost/members-api@1.27.1","@tryghost/members-api@1.27.2","@tryghost/members-api@1.27.3","@tryghost/members-api@1.28.0","@tryghost/members-api@1.29.0","@tryghost/members-api@1.29.1","@tryghost/members-api@1.29.2","@tryghost/members-api@1.29.3","@tryghost/members-api@1.3.0","@tryghost/members-api@1.3.1","@tryghost/members-api@1.3.2","@tryghost/members-api@1.31.0","@tryghost/members-api@1.32.0","@tryghost/members-api@1.32.1","@tryghost/members-api@1.33.0","@tryghost/members-api@1.34.0","@tryghost/members-api@1.35.0","@tryghost/members-api@1.36.0","@tryghost/members-api@1.37.0","@tryghost/members-api@1.37.1","@tryghost/members-api@1.37.2","@tryghost/members-api@1.37.3","@tryghost/members-api@1.37.4","@tryghost/members-api@1.37.5","@tryghost/members-api@1.38.0","@tryghost/members-api@1.38.1","@tryghost/members-api@1.39.0","@tryghost/members-api@1.39.1","@tryghost/members-api@1.4.0","@tryghost/members-api@1.5.0","@tryghost/members-api@1.6.0","@tryghost/members-api@1.6.1","@tryghost/members-api@1.7.0","@tryghost/members-api@1.8.0","@tryghost/members-api@1.9.0","@tryghost/members-api@2.0.0","@tryghost/members-api@2.1.0","@tryghost/members-api@2.1.1","@tryghost/members-api@2.2.0","@tryghost/members-api@2.2.1","@tryghost/members-api@2.2.2","@tryghost/members-api@2.2.3","@tryghost/members-api@2.3.0","@tryghost/members-api@2.4.0","@tryghost/members-api@2.4.1","@tryghost/members-api@2.4.2","@tryghost/members-api@2.4.3","@tryghost/members-api@2.4.4","@tryghost/members-api@2.5.0","@tryghost/members-api@2.6.0","@tryghost/members-api@2.6.1","@tryghost/members-api@2.6.2","@tryghost/members-api@2.7.0","@tryghost/members-api@2.7.1","@tryghost/members-api@2.7.2","@tryghost/members-api@2.7.3","@tryghost/members-api@2.7.4","@tryghost/members-api@2.7.5","@tryghost/members-api@2.7.6","@tryghost/members-api@2.8.0","@tryghost/members-api@2.8.1","@tryghost/members-api@2.8.2","@tryghost/members-api@2.8.3","@tryghost/members-api@2.8.4","@tryghost/members-api@2.8.5","@tryghost/members-api@2.8.6","@tryghost/members-api@2.8.7","@tryghost/members-api@2.8.8","@tryghost/members-api@3.0.0","@tryghost/members-api@3.0.1","@tryghost/members-api@3.1.0","@tryghost/members-api@4.0.0","@tryghost/members-api@4.0.1","@tryghost/members-api@4.1.0","@tryghost/members-api@4.1.1","@tryghost/members-api@4.1.2","@tryghost/members-api@4.1.3","@tryghost/members-api@4.1.4","@tryghost/members-api@4.2.0","@tryghost/members-api@4.3.0","@tryghost/members-api@4.4.0","@tryghost/members-api@4.4.1","@tryghost/members-api@4.5.0","@tryghost/members-api@4.6.0","@tryghost/members-api@4.7.0","@tryghost/members-api@4.7.1","@tryghost/members-api@4.8.0","@tryghost/members-api@4.8.1","@tryghost/members-api@4.8.10","@tryghost/members-api@4.8.11","@tryghost/members-api@4.8.12","@tryghost/members-api@4.8.13","@tryghost/members-api@4.8.14","@tryghost/members-api@4.8.15","@tryghost/members-api@4.8.2","@tryghost/members-api@4.8.3","@tryghost/members-api@4.8.4","@tryghost/members-api@4.8.5","@tryghost/members-api@4.8.6","@tryghost/members-api@4.8.7","@tryghost/members-api@4.8.8","@tryghost/members-api@4.8.9","@tryghost/members-api@5.0.0","@tryghost/members-api@5.0.1","@tryghost/members-api@5.0.2","@tryghost/members-api@5.0.3","@tryghost/members-api@5.0.4","@tryghost/members-api@5.1.0","@tryghost/members-api@5.1.1","@tryghost/members-api@5.1.2","@tryghost/members-api@5.10.0","@tryghost/members-api@5.11.0","@tryghost/members-api@5.11.1","@tryghost/members-api@5.12.0","@tryghost/members-api@5.2.0","@tryghost/members-api@5.3.0","@tryghost/members-api@5.4.0","@tryghost/members-api@5.4.1","@tryghost/members-api@5.5.0","@tryghost/members-api@5.5.1","@tryghost/members-api@5.6.0","@tryghost/members-api@5.6.1","@tryghost/members-api@5.7.0","@tryghost/members-api@5.7.1","@tryghost/members-api@5.8.0","@tryghost/members-api@5.9.0","@tryghost/members-api@5.9.1","@tryghost/members-api@5.9.2","@tryghost/members-api@6.0.0","@tryghost/members-api@6.0.0-alpha.0","@tryghost/members-api@6.1.0","@tryghost/members-api@6.2.0","@tryghost/members-api@6.2.1","@tryghost/members-api@6.2.2","@tryghost/members-api@6.2.3","@tryghost/members-api@6.3.0","@tryghost/members-api@6.3.1","@tryghost/members-api@7.0.0","@tryghost/members-api@7.0.1","@tryghost/members-api@7.0.2","@tryghost/members-api@8.0.0","@tryghost/members-api@8.0.1","@tryghost/members-api@8.1.0","@tryghost/members-api@8.1.1","@tryghost/members-api@8.1.2","@tryghost/members-api@8.1.3","@tryghost/members-api@8.2.0","@tryghost/members-api@8.2.1","@tryghost/members-api@8.3.0","@tryghost/members-auth-pages@0.1.2","@tryghost/members-auth-pages@0.2.0","@tryghost/members-auth-pages@0.2.1","@tryghost/members-auth-pages@0.2.2","@tryghost/members-auth-pages@1.0.0","@tryghost/members-auth-pages@1.1.0","@tryghost/members-auth-pages@1.1.1","@tryghost/members-auth-pages@1.1.2","@tryghost/members-auth-pages@1.1.3","@tryghost/members-browser-auth@0.1.0","@tryghost/members-browser-auth@0.1.1","@tryghost/members-browser-auth@0.1.2","@tryghost/members-browser-auth@0.1.3","@tryghost/members-browser-auth@0.2.0","@tryghost/members-browser-auth@0.2.1","@tryghost/members-browser-auth@0.2.2","@tryghost/members-browser-auth@0.2.3","@tryghost/members-csv@0.1.0","@tryghost/members-csv@0.1.1","@tryghost/members-csv@0.1.2","@tryghost/members-csv@0.2.0","@tryghost/members-csv@0.2.1","@tryghost/members-csv@0.3.0","@tryghost/members-csv@0.3.1","@tryghost/members-csv@0.3.2","@tryghost/members-csv@0.3.3","@tryghost/members-csv@0.4.0","@tryghost/members-csv@0.4.1","@tryghost/members-csv@0.4.2","@tryghost/members-csv@0.4.3","@tryghost/members-csv@0.4.4","@tryghost/members-csv@0.4.5","@tryghost/members-csv@1.0.0","@tryghost/members-csv@1.0.0-rc.2","@tryghost/members-csv@1.0.1","@tryghost/members-csv@1.1.0","@tryghost/members-csv@1.1.1","@tryghost/members-csv@1.1.2","@tryghost/members-csv@1.1.3","@tryghost/members-csv@1.1.4","@tryghost/members-csv@1.1.5","@tryghost/members-csv@1.1.6","@tryghost/members-csv@1.1.7","@tryghost/members-csv@1.1.8","@tryghost/members-csv@1.2.0","@tryghost/members-csv@1.2.1","@tryghost/members-csv@1.2.10","@tryghost/members-csv@1.2.11","@tryghost/members-csv@1.2.12","@tryghost/members-csv@1.2.13","@tryghost/members-csv@1.2.14","@tryghost/members-csv@1.2.15","@tryghost/members-csv@1.2.16","@tryghost/members-csv@1.2.2","@tryghost/members-csv@1.2.3","@tryghost/members-csv@1.2.4","@tryghost/members-csv@1.2.5","@tryghost/members-csv@1.2.6","@tryghost/members-csv@1.2.7","@tryghost/members-csv@1.2.8","@tryghost/members-csv@1.2.9","@tryghost/members-events-service@0.1.0","@tryghost/members-events-service@0.1.1","@tryghost/members-events-service@0.1.2","@tryghost/members-events-service@0.2.0","@tryghost/members-events-service@0.3.0","@tryghost/members-events-service@0.3.1","@tryghost/members-events-service@0.3.2","@tryghost/members-events-service@0.3.3","@tryghost/members-events-service@0.3.4","@tryghost/members-events-service@0.4.0","@tryghost/members-events-service@0.4.1","@tryghost/members-events-service@0.4.2","@tryghost/members-events-service@0.4.3","@tryghost/members-gateway-api@0.1.0","@tryghost/members-gateway-api@0.1.1","@tryghost/members-gateway-api@0.1.2","@tryghost/members-gateway-api@0.1.3","@tryghost/members-gateway-api@0.1.4","@tryghost/members-gateway-api@0.1.5","@tryghost/members-gateway-api@0.1.6","@tryghost/members-gateway-api@0.1.7","@tryghost/members-gateway-protocol@0.1.0","@tryghost/members-gateway-protocol@0.1.1","@tryghost/members-gateway-protocol@0.1.2","@tryghost/members-gateway-protocol@0.1.3","@tryghost/members-gateway-protocol@0.1.4","@tryghost/members-importer@0.1.0","@tryghost/members-importer@0.1.1","@tryghost/members-importer@0.1.2","@tryghost/members-importer@0.2.0","@tryghost/members-importer@0.3.0","@tryghost/members-importer@0.3.1","@tryghost/members-importer@0.3.2","@tryghost/members-importer@0.3.3","@tryghost/members-importer@0.3.4","@tryghost/members-importer@0.3.5","@tryghost/members-importer@0.3.6","@tryghost/members-importer@0.3.7","@tryghost/members-importer@0.4.0","@tryghost/members-importer@0.4.1","@tryghost/members-importer@0.5.0","@tryghost/members-importer@0.5.1","@tryghost/members-importer@0.5.10","@tryghost/members-importer@0.5.11","@tryghost/members-importer@0.5.12","@tryghost/members-importer@0.5.13","@tryghost/members-importer@0.5.14","@tryghost/members-importer@0.5.15","@tryghost/members-importer@0.5.16","@tryghost/members-importer@0.5.2","@tryghost/members-importer@0.5.3","@tryghost/members-importer@0.5.4","@tryghost/members-importer@0.5.5","@tryghost/members-importer@0.5.6","@tryghost/members-importer@0.5.7","@tryghost/members-importer@0.5.8","@tryghost/members-importer@0.5.9","@tryghost/members-offers@0.1.0","@tryghost/members-offers@0.1.1","@tryghost/members-offers@0.1.2","@tryghost/members-offers@0.10.0","@tryghost/members-offers@0.10.1","@tryghost/members-offers@0.10.2","@tryghost/members-offers@0.10.3","@tryghost/members-offers@0.10.4","@tryghost/members-offers@0.10.5","@tryghost/members-offers@0.10.6","@tryghost/members-offers@0.10.7","@tryghost/members-offers@0.10.8","@tryghost/members-offers@0.10.9","@tryghost/members-offers@0.11.0","@tryghost/members-offers@0.11.1","@tryghost/members-offers@0.11.2","@tryghost/members-offers@0.11.3","@tryghost/members-offers@0.11.4","@tryghost/members-offers@0.11.5","@tryghost/members-offers@0.11.6","@tryghost/members-offers@0.2.0","@tryghost/members-offers@0.2.1","@tryghost/members-offers@0.3.0","@tryghost/members-offers@0.3.1","@tryghost/members-offers@0.3.2","@tryghost/members-offers@0.3.3","@tryghost/members-offers@0.3.4","@tryghost/members-offers@0.3.5","@tryghost/members-offers@0.4.0","@tryghost/members-offers@0.4.1","@tryghost/members-offers@0.4.2","@tryghost/members-offers@0.5.0","@tryghost/members-offers@0.6.0","@tryghost/members-offers@0.6.1","@tryghost/members-offers@0.6.2","@tryghost/members-offers@0.7.0","@tryghost/members-offers@0.7.1","@tryghost/members-offers@0.7.2","@tryghost/members-offers@0.8.0","@tryghost/members-offers@0.9.0","@tryghost/members-payments@0.1.0","@tryghost/members-payments@0.1.1","@tryghost/members-payments@0.1.10","@tryghost/members-payments@0.1.11","@tryghost/members-payments@0.1.2","@tryghost/members-payments@0.1.3","@tryghost/members-payments@0.1.4","@tryghost/members-payments@0.1.5","@tryghost/members-payments@0.1.6","@tryghost/members-payments@0.1.7","@tryghost/members-payments@0.1.8","@tryghost/members-payments@0.1.9","@tryghost/members-payments@0.2.0","@tryghost/members-payments@0.3.0","@tryghost/members-payments@0.3.1","@tryghost/members-payments@0.3.2","@tryghost/members-payments@0.3.3","@tryghost/members-payments@0.3.4","@tryghost/members-payments@0.3.5","@tryghost/members-payments@0.3.6","@tryghost/members-ssr@0.1.0","@tryghost/members-ssr@0.1.1","@tryghost/members-ssr@0.1.3","@tryghost/members-ssr@0.1.4","@tryghost/members-ssr@0.1.5","@tryghost/members-ssr@0.2.0","@tryghost/members-ssr@0.2.1","@tryghost/members-ssr@0.3.0","@tryghost/members-ssr@0.3.1","@tryghost/members-ssr@0.4.0","@tryghost/members-ssr@0.5.0","@tryghost/members-ssr@0.5.1","@tryghost/members-ssr@0.5.2","@tryghost/members-ssr@0.6.0","@tryghost/members-ssr@0.7.0","@tryghost/members-ssr@0.7.1","@tryghost/members-ssr@0.7.10","@tryghost/members-ssr@0.7.2","@tryghost/members-ssr@0.7.3","@tryghost/members-ssr@0.7.4","@tryghost/members-ssr@0.7.5","@tryghost/members-ssr@0.7.6","@tryghost/members-ssr@0.7.7","@tryghost/members-ssr@0.7.8","@tryghost/members-ssr@0.7.9","@tryghost/members-ssr@0.8.0","@tryghost/members-ssr@0.8.1","@tryghost/members-ssr@0.8.10","@tryghost/members-ssr@0.8.11","@tryghost/members-ssr@0.8.2","@tryghost/members-ssr@0.8.3","@tryghost/members-ssr@0.8.4","@tryghost/members-ssr@0.8.5","@tryghost/members-ssr@0.8.6","@tryghost/members-ssr@0.8.7","@tryghost/members-ssr@0.8.8","@tryghost/members-ssr@0.8.9","@tryghost/members-ssr@1.0.0","@tryghost/members-ssr@1.0.1","@tryghost/members-ssr@1.0.10","@tryghost/members-ssr@1.0.11","@tryghost/members-ssr@1.0.12","@tryghost/members-ssr@1.0.13","@tryghost/members-ssr@1.0.14","@tryghost/members-ssr@1.0.15","@tryghost/members-ssr@1.0.16","@tryghost/members-ssr@1.0.17","@tryghost/members-ssr@1.0.18","@tryghost/members-ssr@1.0.19","@tryghost/members-ssr@1.0.2","@tryghost/members-ssr@1.0.20","@tryghost/members-ssr@1.0.21","@tryghost/members-ssr@1.0.22","@tryghost/members-ssr@1.0.23","@tryghost/members-ssr@1.0.24","@tryghost/members-ssr@1.0.25","@tryghost/members-ssr@1.0.26","@tryghost/members-ssr@1.0.27","@tryghost/members-ssr@1.0.28","@tryghost/members-ssr@1.0.3","@tryghost/members-ssr@1.0.4","@tryghost/members-ssr@1.0.5","@tryghost/members-ssr@1.0.6","@tryghost/members-ssr@1.0.7","@tryghost/members-ssr@1.0.8","@tryghost/members-ssr@1.0.9","@tryghost/members-stripe-service@0.1.0","@tryghost/members-stripe-service@0.10.0","@tryghost/members-stripe-service@0.10.1","@tryghost/members-stripe-service@0.10.2","@tryghost/members-stripe-service@0.10.3","@tryghost/members-stripe-service@0.10.4","@tryghost/members-stripe-service@0.10.5","@tryghost/members-stripe-service@0.10.6","@tryghost/members-stripe-service@0.2.0","@tryghost/members-stripe-service@0.3.0","@tryghost/members-stripe-service@0.3.1","@tryghost/members-stripe-service@0.4.0","@tryghost/members-stripe-service@0.5.0","@tryghost/members-stripe-service@0.5.1","@tryghost/members-stripe-service@0.5.2","@tryghost/members-stripe-service@0.6.0","@tryghost/members-stripe-service@0.6.1","@tryghost/members-stripe-service@0.6.2","@tryghost/members-stripe-service@0.6.3","@tryghost/members-stripe-service@0.6.4","@tryghost/members-stripe-service@0.6.5","@tryghost/members-stripe-service@0.6.6","@tryghost/members-stripe-service@0.6.7","@tryghost/members-stripe-service@0.7.0","@tryghost/members-stripe-service@0.8.0","@tryghost/members-stripe-service@0.8.1","@tryghost/members-stripe-service@0.8.2","@tryghost/members-stripe-service@0.8.3","@tryghost/members-stripe-service@0.8.4","@tryghost/members-stripe-service@0.9.0","@tryghost/members-stripe-service@0.9.1","@tryghost/members-stripe-service@0.9.2","@tryghost/members-stripe-service@0.9.3","@tryghost/members-stripe-service@0.9.4","@tryghost/members-theme-bindings@0.1.0","@tryghost/members-theme-bindings@0.2.0","@tryghost/members-theme-bindings@0.2.1","@tryghost/members-theme-bindings@0.2.2","@tryghost/members-theme-bindings@0.2.3","@tryghost/members-theme-bindings@0.2.4","@tryghost/members-theme-bindings@0.2.5","@tryghost/members-theme-bindings@0.2.6","@tryghost/portal@2.13.2","@tryghost/portal@2.14.0","@tryghost/portal@2.16.0","@tryghost/portal@2.17.0","@tryghost/portal@2.18.0","@tryghost/portal@2.19.3","@tryghost/portal@2.19.5","@tryghost/portal@2.19.6","@tryghost/portal@2.19.7","@tryghost/portal@2.19.8","@tryghost/portal@2.19.9","@tryghost/portal@2.20.0","@tryghost/portal@2.20.1","@tryghost/portal@2.20.2","@tryghost/portal@2.20.3","@tryghost/portal@2.21.0","@tryghost/portal@2.22.0","@tryghost/portal@2.23.0","@tryghost/portal@2.24.0","@tryghost/portal@2.24.1","@tryghost/portal@2.25.0","@tryghost/portal@2.26.0","@tryghost/portal@2.27.0","@tryghost/portal@2.28.0","@tryghost/portal@2.28.1","@tryghost/portal@2.29.0","@tryghost/portal@2.29.1","@tryghost/portal@2.29.2","@tryghost/portal@2.29.3","@tryghost/portal@2.30.0","@tryghost/portal@2.30.1","@tryghost/portal@2.31.0","@tryghost/portal@2.31.1","@tryghost/portal@2.31.2","@tryghost/portal@2.32.0","@tryghost/portal@2.33.0","@tryghost/portal@2.33.1","@tryghost/portal@2.33.2","@tryghost/portal@2.33.3","@tryghost/portal@2.33.4","@tryghost/portal@2.36.5","@tryghost/portal@2.37.0","@tryghost/product-repository@0.1.1","@tryghost/signup-form@0.0.1","@tryghost/signup-form@0.0.3","@tryghost/signup-form@0.1.0","@tryghost/signup-form@0.1.1","@tryghost/signup-form@0.1.2","@tryghost/signup-form@0.1.3","@tryghost/stripe-service@0.1.0","@tryghost/substack-ghost-csv-converter@0.1.0","@tryghost/verification-trigger@0.1.0","@tryghost/verification-trigger@0.1.1","@tryghost/verification-trigger@0.1.2","@tryghost/verification-trigger@0.1.3","@tryghost/verification-trigger@0.1.4","@tryghost/verification-trigger@0.1.5","@tryghost/verification-trigger@0.1.6","@tryghost/verification-trigger@0.2.0","@tryghost/verification-trigger@0.2.1","@tryghost/verification-trigger@0.2.2","@tryghost/verification-trigger@0.2.3","@tryghost/verification-trigger@0.2.4","@tryghost/verification-trigger@0.2.5","v4.46.0","v5.0.0","v5.0.1","v5.0.2","v5.1.0","v5.1.1","v5.10.0","v5.10.1","v5.11.0","v5.12.0","v5.12.1","v5.12.2","v5.12.3","v5.12.4","v5.13.0","v5.13.1","v5.13.2","v5.14.0","v5.14.1","v5.14.2","v5.15.0","v5.16.0","v5.16.1","v5.16.2","v5.17.0","v5.17.1","v5.17.2","v5.18.0","v5.19.0","v5.19.1","v5.19.2","v5.19.3","v5.2.0","v5.2.1","v5.2.2","v5.2.3","v5.2.4","v5.20.0","v5.21.0","v5.22.0","v5.22.1","v5.22.10","v5.22.11","v5.22.2","v5.22.3","v5.22.4","v5.22.5","v5.22.6","v5.22.7","v5.22.8","v5.22.9","v5.23.0","v5.24.0","v5.24.1","v5.24.2","v5.25.0","v5.25.1","v5.25.2","v5.25.3","v5.25.4","v5.25.5","v5.26.0","v5.26.1","v5.26.2","v5.26.3","v5.26.4","v5.27.0","v5.28.0","v5.29.0","v5.3.0","v5.3.1","v5.30.0","v5.30.1","v5.31.0","v5.32.0","v5.33.0","v5.33.1","v5.33.2","v5.33.3","v5.33.4","v5.33.5","v5.33.6","v5.33.7","v5.33.8","v5.34.0","v5.34.1","v5.35.0","v5.35.1","v5.36.0","v5.36.1","v5.37.0","v5.38.0","v5.39.0","v5.4.0","v5.4.1","v5.40.0","v5.40.1","v5.40.2","v5.41.0","v5.42.0","v5.42.1","v5.42.2","v5.42.3","v5.43.0","v5.44.0","v5.45.0","v5.45.1","v5.46.0","v5.46.1","v5.47.0","v5.47.1","v5.47.2","v5.48.0","v5.48.1","v5.49.0","v5.49.1","v5.49.2","v5.49.3","v5.5.0","v5.50.0","v5.50.1","v5.50.2","v5.50.3","v5.50.4","v5.51.0","v5.51.1","v5.51.2","v5.52.0","v5.52.1","v5.52.2","v5.52.3","v5.53.0","v5.53.1","v5.53.2","v5.53.3","v5.53.4","v5.54.0","v5.54.1","v5.54.2","v5.54.3","v5.54.4","v5.55.0","v5.55.1","v5.55.2","v5.56.0","v5.56.1","v5.57.0","v5.57.1","v5.57.2","v5.57.3","v5.58.0","v5.59.0","v5.59.1","v5.59.2","v5.59.3","v5.59.4","v5.6.0","v5.60.0","v5.61.0","v5.61.1","v5.61.2","v5.61.3","v5.62.0","v5.63.0","v5.64.0","v5.65.0","v5.65.1","v5.66.0","v5.66.1","v5.67.0","v5.67.1","v5.68.0","v5.69.0","v5.69.1","v5.69.2","v5.69.3","v5.69.4","v5.7.0","v5.7.1","v5.70.0","v5.70.1","v5.70.2","v5.71.0","v5.71.1","v5.71.2","v5.72.0","v5.72.1","v5.72.2","v5.73.0","v5.73.1","v5.73.2","v5.74.0","v5.74.1","v5.74.2","v5.74.3","v5.74.4","v5.74.5","v5.75.0","v5.75.1","v5.75.2","v5.75.3","v5.76.0","v5.76.1","v5.76.2","v5.77.0","v5.78.0","v5.79.0","v5.79.1","v5.79.2","v5.79.3","v5.79.4","v5.79.5","v5.79.6","v5.8.0","v5.8.1","v5.8.2","v5.8.3","v5.80.0","v5.80.1","v5.80.2","v5.80.3","v5.80.4","v5.80.5","v5.81.0","v5.81.1","v5.82.0","v5.82.1","v5.82.10","v5.82.11","v5.82.12","v5.82.2","v5.82.3","v5.82.4","v5.82.5","v5.82.6","v5.82.7","v5.82.8","v5.82.9","v5.83.0","v5.84.0","v5.84.1","v5.84.2","v5.85.0","v5.85.1","v5.85.2","v5.86.0","v5.86.1","v5.86.2","v5.87.0","v5.87.1","v5.87.2","v5.87.3","v5.88.0","v5.88.1","v5.88.2","v5.88.3","v5.89.0","v5.89.1","v5.89.2","v5.89.3","v5.89.4","v5.9.0","v5.9.1","v5.9.2","v5.9.3","v5.9.4"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2024-43409.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N"}]}