{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreiaas6y64oiglxpvow4pb7fvq4lfpqkpf3hmsyh72uqalnbtjt2iwa",
    "uri": "at://did:plc:iir655mcoipvnewhnkv6fb3u/app.bsky.feed.post/3mmmdq6kacd42"
  },
  "path": "/news/security/ghost-cms-sql-injection-flaw-exploited-in-large-scale-clickfix-campaign/",
  "publishedAt": "2026-05-24T14:30:57.000Z",
  "site": "https://www.bleepingcomputer.com",
  "textContent": "\nA large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows.",
  "title": "Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign"
}