Critical cPanel and WHM Zero‑Day (CVE‑2026‑41940) Is Being Exploited: What to Patch, Rotate, and Hunt Now
A critical cPanel and WHM bug, tracked as CVE‑2026‑41940, is being actively exploited as a zero‑day remote code execution (RCE) vulnerability. Public proof‑of‑concept (PoC) code dropped shortly after vendor patches landed, accelerating mass scanning and opportunistic attacks. Early activity includes governments in Southeast Asia and hosting providers worldwide, with widespread follow‑on activity observed in the…