Ghost CMS flaw abused to push ClickFix attacks on hundreds of sites
Source: Securityaffairs.Co
Published:
<p>Attackers are exploiting the patched Ghost CMS flaw CVE-2026-26980, compromising over 700 unpatched sites, including universities. Threat actors are actively exploiting a security flaw, tracked as CVE-2026-26980, in Ghost CMS that was fixed months ago in real attacks against unpatched websites. A