Critical cPanel and WHM bug exploited as a zero-day, PoC now available
The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. [...]
ORIGINAL SOURCE →via BleepingComputer
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] UK: Education Sector Faces Surge in Cyber Breaches Despite Stable National Threat Levels
- [CYBER] Opinion: Opinion | If Mamata Banerjee Wins Again, It Might Be Only Because Of One Particular Group
- [CYBER] Short and easy to understand: "Copy-Fail CVE-2026-31431" What is it and how do I mitigate it using owLSM
- [CYBER] Is Stack Exploitation still relevant in 2026, or has Heap taken over modern binary exploitation?
- [CYBER] Iman, Hadi approach SC seeking early hearing of appeals against conviction in social media posts case
- [CYBER] In Regard to CVE-2026-41940