Vendor
critical
threat
Critical Authentication Bypass Vulnerability in cPanel & WHM (CVE-2026-41940)
2 rules 1 TTP 1 CVECVE-2026-41940 is a critical authentication bypass vulnerability in cPanel & WHM, allowing unauthenticated remote attackers to gain administrative access by manipulating session data.
exploited
cPanel & WHM
authentication bypass
cPanel
web hosting
vulnerability
2r
1t
1c
critical
advisory
cPanel and WHM Authentication Bypass Vulnerability (CVE-2026-41940)
2 rules 1 TTP 1 CVEAn authentication bypass vulnerability in cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, and 11.136.0.5 allows unauthenticated remote attackers to gain unauthorized access to the control panel.
WHM +1
cpanel
authentication-bypass
CVE-2026-41940
webserver
2r
1t
1c