The Hacker News

cPanel, WHM Release Fixes for Three New Vulnerabilities — Patch Now

Panel patched three vulnerabilities, including two 8.8 CVSS flaws, reducing risks of code execution and privilege escalation.

New cPanel patch addresses CRLF injection flaw that could grant root server access

The vulnerability has been given a severity score of 9,8, and administrators should patch immediately.

Hackers are mass-exploiting the cPanel bug to gain control of thousands of websites

Days after the disclosure of a critical vulnerability in popular web hosting software cPanel and WHM, hackers keep targeting ...
GhanaWeb - Ghana HomePage

cPanel Bug: What Ghanaian Web Hosts Need to Know Now

A serious cPanel security flaw lets hackers take over websites. Here's what it means for Ghanaian small businesses and web ...

Hackers are actively exploiting a bug in cPanel, used by millions of websites

Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...
Cybernews

Critical cPanel bug exposes millions of websites to full server takeover

A critical vulnerability in cPanel and WHM, tracked as CVE-2026-41940, allows attackers to bypass authentication and gain ...
Arabian Post

cPanel flaw exposes hosting defences

A publicly released exploit for a critical cPanel and WebHost Manager flaw has intensified pressure on hosting companies and ...
TechBooky

Hackers Are Exploiting Critical cPanel Bug, Putting Millions of Websites at Risk

Web hosting providers are racing to secure their infrastructure after security researchers disclosed a serious vulnerability ...

cPanel/WHM: Unauthorized access to web server configuration tool possible

Attackers can exploit a “ critical ” security vulnerability in the cPanel and WebHost Manager (WHM) web server administration ...
ZDNet

2FA bypass discovered in web hosting software cPanel

Security researchers have discovered a major security flaw in cPanel, a popular software suite used by web hosting companies to manage websites for their customers. The bug, discovered by security ...