CVE-2026-26980 | TryGhost up to 6.19.0 sql injection (GHSA-w52v-v783-gw97)

Inserito da Angelo Barbosa | Feb 20, 2026 | CVE

A vulnerability has been found in TryGhost Ghost up to 6.19.0 and classified as critical. Impacted is an unknown function. This manipulation causes sql injection.

This vulnerability is tracked as CVE-2026-26980. The attack is possible to be carried out remotely. No exploit exists.

The affected component should be upgraded.

CVE-2026-26980 | TryGhost up to 6.19.0 sql injection (GHSA-w52v-v783-gw97)

Post correlati

CVE-2024-10660 | ESAFENET CDG 5 HookService.java deleteHook hookId sql injection

CVE-2022-49689 | Linux Kernel up to 5.15.50/5.18.7 xen-blkfront null pointer dereference

CVE-2024-22141 | Profile Builder Pro Plugin up to 3.10.0 on WordPress One-Time Password information disclosure

CVE-2024-47030 | Google Android ACPM information disclosure