CVE-2022-28397
An arbitrary file upload vulnerability in the file upload module of Ghost CMS v4.42.0 allows attackers to execute arbitrary code via a crafted file. NOTE: Vendor states as detailed in Ghost's security documentation, files can only be uploaded and published by trusted users, this is intentionalList of 3,443 websites affected by CVE-2022-28397
The domain names are hidden due to the sensitivity of the data. Please click on the "Contact us" button above to get more information.
| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ***************.org |  United States | *,***,*** | |
| ****.**********.***.uk |  GB | *,***,*** | |
| ****.**********.io | United States | *,***,*** | |
| ********.com | United States | *,***,*** | |
| ******.pk |  Pakistan | *,***,*** | |
| ********.com | United States | *,***,*** | |
| ******.it |  Italy | *,***,*** | |
| ********.me | United States | *,***,*** | |
| **************.io |  Germany | *,***,*** | |
| ******.io | United States | *,***,*** | |
| ****.********.com |  China | *,***,*** | |
| ***********.de | United States | *,***,*** | |
| ****.**********.com | United States | *,***,*** | |
| *****.**.uk | GB | *,***,*** | |
| ****.********.org | Germany | *,***,*** | |
| ******.io | United States | *,***,*** | |
| **************.com | United States | *,***,*** | |
| *****.co | United States | *,***,*** | |
| *****.me | United States | *,***,*** | |
| *****.***********.com | United States | *,***,*** |