Executive Summary
A critical SQL injection vulnerability, CVE-2026-26980, in the Content API of Ghost CMS allows unauthenticated remote attackers to read arbitrary data from the database, most notably the site's Admin API Keys [github.com opens in a new tab] [sentinelone.com opens in a new tab]. Possession of these keys allows full administrative control over the Ghost instance [sentinelone.com opens in a new tab] [nvd.nist.gov opens in a new tab].
Starting around May 2026, threat actors launched a widespread campaign exploiting this vulnerability, compromising over 700 websites (including academic institutions and enterprise portals) [sentinelone.com opens in a new tab] [mallory.ai opens in a new tab]. Attackers used stolen Admin API keys to inject malicious JavaScript into published articles, executing ClickFix social engineering attacks [nvd.nist.gov opens in a new tab] [mallory.ai opens in a new tab]. Users visiting compromised pages are redirected to a fake Cloudflare "Verify you are human" prompt that tricks them into running malicious PowerShell commands on their local systems, leading to info-stealer infections [sentinelone.com opens in a new tab] [mallory.ai opens in a new tab].
The vulnerability affects Ghost CMS versions 3.24.0 through 6.19.0 and was patched in version 6.19.1 [github.com opens in a new tab] [mallory.ai opens in a new tab]. Operators of Ghost instances should immediately upgrade to version 6.19.1 or newer, audit published content for injected scripts, and rotate all Admin API keys [sentinelone.com opens in a new tab].