Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...

A critical-severity authentication bypass vulnerability in cPanel & WHM has been exploited as a zero-day since February 2026.

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in ...

A critical authentication bypass vulnerability in cPanel & WHM, tracked as CVE-2026-41940, has been actively exploited as a zero-day since at least February 2026. The flaw allows unauthenticated ...

A vulnerability in the cPanel/WHM admin interface lets attackers access websites without a username and password.

A critical security vulnerability affecting widely used web hosting software cPanel has prompted urgent calls for ...

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be ...

Web hosting software vendor cPanel has issued patches for a critical vulnerability in its software that is under exploitation ...

Security researchers have discovered a major security flaw in cPanel, a popular software suite used by web hosting companies to manage websites for their customers. The bug, discovered by security ...