⚠️ A threat actor is selling a previously unpatched cPanel information disclosure vulnerability t...

Summary

A threat actor is actively marketing a previously unknown information disclosure vulnerability in cPanel that allegedly exposes sensitive website login data including panel credentials, site links, usernames, and passwords. The seller claims this is a secondary vulnerability discovered following the patching of a related flaw, suggesting continued exploitation risks for cPanel users.

Entities