ADVERTISEMENT

Critical cPanel bug exposes millions of websites to full server takeover

A critical vulnerability in cPanel and WHM, tracked as CVE-2026-41940, allows attackers to bypass authentication and gain full server access. It may have been actively exploited since late February, potentially affecting millions of domains, but emergency patches are now available.

personal data leaking concept
Anna Zhadan
Anna Zhadan Contributor
May 2, 2026 Updated: 4 May 2026 1 min read
Key takeaways:

Check if your data has been leaked

Find out if your email, phone number or related personal information might have fallen into the wrong hands.
18,611,353,922
Breached accounts
36,030
Breached websites
ADVERTISEMENT
jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News
Add us as your Preferred Source on Google.

ADVERTISEMENT