Active Exploitation of cPanel/WHM Vulnerability (CVE-2026-41940): What Web Hosts and Site Owners Must Do Now
A critical cPanel/WHM vulnerability, tracked as CVE-2026-41940, is under active exploitation — and it directly targets the login flow that tens of millions of websites rely on to manage servers, email, and applications. Attackers can remotely bypass authentication and seize full administrative control of cPanel and WebHost Manager. For shared hosting providers and the small…