> TritonInfoSec News
Home / May 27, 2026 / Story
0
#10 SecurityWeek general May 25, 2026 at 13:27 UTC

Ghost CMS Vulnerability Exploited to Hack Over 700 Websites

By Eduard Kovacs

AI Summary

A Ghost CMS vulnerability was exploited to compromise over 700 websites, including sites belonging to Harvard University, Oxford University, and DuckDuckGo. The breadth of high-profile victims — spanning academia and privacy-focused tech companies — illustrates how widely deployed Ghost CMS is and how quickly unpatched CMS vulnerabilities are weaponized at scale. Ghost CMS administrators should apply available patches immediately and audit their sites for indicators of compromise.

Read full article → https://www.securityweek.com/ghost-cms-vulnerabili…

Relevance score: 74.0/100

# More from May 27

  1. 1
    Charter confirms data breach after ShinyHunters extortion threat BleepingComputer
  2. 2
    Microsoft Patches SharePoint RCE Flaw CVE-2026-45659 Across Server Versions The Hacker News
  3. 3
    Millions of AI agents imperiled by critical vulnerability in open source package Ars Technica Security
  4. 4
    Feeding Frenzy: 'Megalodon' Malware Infects Thousands of GitHub Repos Dark Reading
  5. 5
    KnowledgeDeliver LMS Flaw Exploited to Deploy Godzilla and Cobalt Strike The Hacker News
  6. 6
    Dutch authorities arrest men suspected of providing infrastructure for Russian cyber operations The Record
  7. 7
    7-Eleven data breach exposes personal information of 185,000 people BleepingComputer
  8. 8
    MuddyWater Uses DLL Side-Loading in Espionage Campaign Targeting 9 Countries The Hacker News
  9. 9
    CISA orders feds to patch actively exploited Drupal vulnerability BleepingComputer