Ghost CMS SQL Injection Vulnerability Facilitates Large
Source: Technadu
Published:
<p>A large-scale campaign is currently exploiting the critical SQL injection vulnerability CVE-2026-26980 in Ghost CMS to facilitate malicious JavaScript injection and subsequent ClickFix execution flows. Analysis confirms the compromise of over 700 domains across multiple verticals, including highe