System	Score	Found at
epss	0.00025	https://api.first.org/data/v1/epss?cve=CVE-2026-29784
cvssv3.1_qr	HIGH	https://github.com/advisories/GHSA-9m84-wc28-w895
cvssv3.1	7.5	https://github.com/TryGhost/Ghost
generic_textual	HIGH	https://github.com/TryGhost/Ghost
cvssv3.1	7.5	https://github.com/TryGhost/Ghost/commit/ec065a774fa125953d2aa644a59cd8990329e0a0
generic_textual	HIGH	https://github.com/TryGhost/Ghost/commit/ec065a774fa125953d2aa644a59cd8990329e0a0
ssvc	Track	https://github.com/TryGhost/Ghost/commit/ec065a774fa125953d2aa644a59cd8990329e0a0
cvssv3.1	7.5	https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895
cvssv3.1_qr	HIGH	https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895
generic_textual	HIGH	https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895
ssvc	Track	https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895
cvssv3.1	7.5	https://nvd.nist.gov/vuln/detail/CVE-2026-29784
generic_textual	HIGH	https://nvd.nist.gov/vuln/detail/CVE-2026-29784

Reference id	Reference type	URL
		https://api.first.org/data/v1/epss?cve=CVE-2026-29784
CVE-2026-29784		https://nvd.nist.gov/vuln/detail/CVE-2026-29784
ec065a774fa125953d2aa644a59cd8990329e0a0		https://github.com/TryGhost/Ghost/commit/ec065a774fa125953d2aa644a59cd8990329e0a0
GHSA-9m84-wc28-w895		https://github.com/advisories/GHSA-9m84-wc28-w895
GHSA-9m84-wc28-w895		https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895

No exploits are available.

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/TryGhost/Ghost

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/TryGhost/Ghost/commit/ec065a774fa125953d2aa644a59cd8990329e0a0

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-09T17:39:47Z/ Found at https://github.com/TryGhost/Ghost/commit/ec065a774fa125953d2aa644a59cd8990329e0a0

---

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

---

Vector: SSVCv2/E:N/A:N/T:T/P:M/B:A/M:M/D:T/2026-03-09T17:39:47Z/ Found at https://github.com/TryGhost/Ghost/security/advisories/GHSA-9m84-wc28-w895

---

Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H Found at https://nvd.nist.gov/vuln/detail/CVE-2026-29784

Attack Vector (AV)	Attack Complexity (AC)	Privileges Required (PR)	User Interaction (UI)	Scope (S)	Confidentiality Impact (C)	Integrity Impact (I)	Availability Impact (A)
network adjacent_network local physical	low high	none low high	none required	unchanged changed	high low none	high low none	high low none

Percentile	0.0756
EPSS Score	0.00025
Published At	June 11, 2026, 12:55 p.m.

Date	Actor	Action	Source	VulnerableCode Version
2026-06-11T16:46:52.190232+00:00	Vulnrichment	Import	https://github.com/cisagov/vulnrichment/blob/develop/2026/29xxx/CVE-2026-29784.json	38.6.0