THREATNOIR
Subscribe
Back to Feed
Zero-dayMay 4, 2026

Exploit Cyber-Frenzy Threatens Millions via Critical cPanel Vulnerability

Critical cPanel authentication-bypass flaw exploited in wild with PoC code and suspected month-long zero-day activity.

Read at source

Summary

A critical authentication-bypass vulnerability in cPanel has been disclosed and rapidly weaponized with public proof-of-concept exploits appearing immediately after disclosure. Security researchers report evidence of zero-day exploitation activity occurring for at least one month prior to the public advisory, potentially affecting millions of users relying on cPanel for web hosting and server management.

Indicators of Compromise

  • malware — cPanel authentication-bypass exploit

Entities

cPanel (product)Authentication bypass (technology)