{"uuid": "4eb3c98f-5b3e-4722-8f89-ba8171026112", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-26980", "type": "seen", "source": "https://t.me/thehackernews/9074", "content": "\ud83d\udea8 Hackers breached 700+ Ghost CMS websites to serve ClickFix malware attacks.\n\nRead \ud83e\udc12 https://thehackernews.com/2026/05/ghost-cms-cve-2026-26980-exploited-to.html\n\nThe attackers exploited critical flaw CVE-2026-26980 to steal admin API keys and inject malicious JavaScript into legitimate sites, including university, AI, blockchain, and fintech platforms.\n\nVisitors were shown fake CAPTCHA pages that tricked them into running malware.", "creation_timestamp": "2026-05-25T12:14:00.000000Z"}