CMS JavaScript - Search News

14d

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows.

Results that may be inaccessible to you are currently showing.

Hide inaccessible results

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

Trending now