CMS Wire

SQL Injection and Little Bobby Tables: How to Protect Your CMS

If your eyes glazed over at the recent announcement of an “SQL injection” vulnerability in WordPress, take heart. You’re not alone. SQL injection attacks are a common kind of security flaw, but are ...
Bleeping Computer

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious JavaScript code that triggers ClickFix attack flows. The campaign was ...
Infosecurity-magazine.com

SQL Injection Flaw Found in Mossack Fonseca CMS

An anonymous hacker has pointed out an SQL injection vulnerability in the IT systems of notorious Panamanian law firm Mossack Fonseca, hinting at sub-standard IT security at the firm which likely ...