Home/Tag/Cve 2026 26980

Cve 2026 26980

2 articles tagged with "Cve 2026 26980"

Malware5 min read

Ghost CMS Flaw Turns Harvard, Oxford Sites Into Malware Hosts

Attackers exploited CVE-2026-26980 SQL injection in Ghost CMS to compromise 700+ websites including Harvard and Oxford, deploying ClickFix social engineering malware through fake CAPTCHA prompts.

James RiveraJun 10, 2026

Vulnerabilities5 min read

700 Sites Hijacked as Ghost CMS SQLi Fuels ClickFix Attacks

Attackers exploit CVE-2026-26980 to steal admin API keys and inject malicious scripts across 700+ Ghost CMS sites, including Harvard and Oxford. Patch now.

Marcus ChenMay 24, 2026