Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...

Emergency patches are available for a critical vulnerability in cPanel and WHM that allows attackers to bypass authentication ...

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

The vulnerability has been given a severity score of 9,8, and administrators should patch immediately.

Web hosting software vendor cPanel has issued patches for a critical vulnerability in its software that is under exploitation ...

A critical-severity authentication bypass vulnerability in cPanel & WHM has been exploited as a zero-day since February 2026.

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be ...

A critical authentication bypass flaw in cPanel and WebHost Manager, tracked as CVE-2026-41940, is under active exploitation, allowing attackers full root access to servers. Major hosting providers ...

CVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel & WHM, including DNSOnly, in versions after ...

A critical authentication bypass in cPanel and WHM let attackers walk through the front door of any internet-facing control ...

Attackers can exploit a “ critical ” security vulnerability in the cPanel and WebHost Manager (WHM) web server administration ...