The flaw, which affects Ghost versions 3.24.0 through 6.19.0, allows unauthenticated attackers to read arbitrary data from the website database.
