Hackers are actively exploiting a bug in cPanel and WHM
dotmanish
34 points
4 comments
April 30, 2026
Related Discussions
Found 5 related stories in 86.2ms across 8,303 title embeddings via pgvector HNSW
- CPanel and WHM Authentication Bypass – CVE-2026-41940 zikani_03 · 79 pts · April 30, 2026 · 74% similar
- CPanel's Black Week: 3 New Vulnerabilities Patched After Attack on 44k Servers ggallas · 117 pts · May 09, 2026 · 71% similar
- Someone bought 30 WordPress plugins and planted a backdoor in all of them speckx · 836 pts · April 13, 2026 · 53% similar
- Hackers now exploit critical F5 BIG-IP flaw in attacks, patch now Brajeshwar · 21 pts · March 30, 2026 · 53% similar
- Google published exploit code for an unfixed Chromium bug logickkk1 · 28 pts · May 20, 2026 · 52% similar
Discussion Highlights (3 comments)
dspillett
With this (CVE-2026-41940) and copy.fail (CVE-2026-3143), it must be an exciting time in the shared hosting business right now… Glad I've been out of it for a long time.
sikozu
There must be so many (small) shared hosting companies that don't update their software, those poor customers.
ChrisArchitect
A full breakdown of the vulnerability: https://labs.watchtowr.com/the-internet-is-falling-down-fall...