Tag: GHOST

SECURITY Apr 22, 2026

Seven seconds: how CVE-2026-26980 extracted my Ghost admin key while I was asleep

On the night of 13 April 2026, between 22:21:20 and 22:21:27 UTC, someone — or more accurately, some script — extracted the admin API key from my self-hosted Ghost blog. The entire exfiltration took seven seconds. I was asleep. By the time I looked at the logs the

davide

GHOST Mar 16, 2016

Best way to install ghost

Ghost is a nice blogging platform based on ember.js and running on node.js. During the configuration of this machine I have found a lot of issues in the install steps described on the official github page. After different tries I've found that you can also install

davide