Information security
fromSecurityWeek
4 hours agoCISA Urges Immediate Patching of Exploited LiteSpeed cPanel Plugin Zero-Day
CVE-2026-48172 in LiteSpeed cPanel user-end plugin is actively exploited and enables root-level script execution; patch to 2.4.5+ or remove plugin immediately.