Critical cPanel and WHM bug exploited as a zero-day, PoC now available

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in ...
Security Boulevard

Actively exploited cPanel bug exposes millions of websites to takeover

A vulnerability in the cPanel/WHM admin interface lets attackers access websites without a username and password.

cPanel, WHM emergency update fixes critical auth bypass bug

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be ...
来自MSN

cPanel flaw exploited for months puts millions of servers at risk

A critical authentication bypass vulnerability in cPanel & WHM, tracked as CVE-2026-41940, has been actively exploited as a zero-day since at least February 2026. The flaw allows unauthenticated ...
Arabian Post

cPanel flaw exposes hosting defences

A publicly released exploit for a critical cPanel and WebHost Manager flaw has intensified pressure on hosting companies and ...