"The bug allows malicious hackers to remotely bypass its login screen to gain full access to the software's administration panel, potentially compromising large numbers of websites."
"Canada's national cybersecurity agency stated that exploitation is highly probable and immediate action from cPanel customers, or their web hosts, is necessary to prevent malicious access."
"Web hosting giant Namecheap blocked access to customers' cPanel panels after learning of the flaw to prevent exploitation and to give it time to patch its customers' systems."
"Hostgator has patched its systems and is considering the bug a critical authentication-by-pass vulnerability, emphasizing the need for swift action."
A newly discovered vulnerability in cPanel and WHM allows hackers to hijack servers, affecting millions of website owners. The bug, tracked as CVE-2026-41940, enables remote access to the software's administration panel by bypassing the login screen. Many web hosting companies have already patched their systems, but users are urged to ensure their systems are updated. The vulnerability poses a significant risk, especially for shared hosting environments, prompting advisories from cybersecurity agencies for immediate action to prevent exploitation.
Read at TechCrunch
Unable to calculate read time
Collection
[
|
...
]