Attackers Exploit cPanel Authentication Bypass 0-Day After PoC Release
A critical zero-day vulnerability, tracked as CVE-2026-41940, is currently being actively exploited across the web hosting industry. This CVSS 9.8 flaw allows unauthenticated remote attackers to bypass cPanel and WHM login mechanisms, granting them full administrative control over servers. The vulne
ORIGINAL SOURCE →via GBHackers Security
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] When AI Codes for Hackers
- [CYBER] Wasabi Protocol hit by more than $5 million exploit across multiple chains, security firms say
- [CYBER] Why Defence Organizations Need 24/7 SOC Monitoring
- [CYBER] Anthropic Jumps to $900B Valuation Above OpenAI's $852B as Cyber Race Heats Up
- [CYBER] Fast16 Malware
- [CYBER] Bug of the year (so far): Nasty cPanel vulnerability probably exploited as a 0-day