Web hosts are scrambling to fix the bug under active attack by hackers. One company said hackers have been abusing the bug ...

A critical-severity authentication bypass vulnerability in cPanel & WHM has been exploited as a zero-day since February 2026.

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be ...

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in ...

CVE-2026-41940 is a critical authentication bypass vulnerability affecting cPanel & WHM, including DNSOnly, in versions after ...

Emergency patches are available for a critical vulnerability in cPanel and WHM that allows attackers to bypass authentication ...

A critical authentication bypass vulnerability in cPanel and WHM, used by millions of websites, is being actively exploited by hackers. The flaw, CVE-2026-41940, allows attackers to bypass login ...

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

Web hosting software vendor cPanel has issued patches for a critical vulnerability in its software that is under exploitation ...

A newly discovered bug in cPanel and WebHost Manager (WHM) software is being actively exploited by hackers, potentially affecting tens of millions of websites worldwide.