URL has been copied successfully!
LiteSpeed cPanel Plugin 0-Day Exploited for Server Root Access
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

LiteSpeed cPanel Plugin 0-Day Exploited for Server Root Access


Tags: , , , , , ,

A critical zero-day privilege escalation vulnerability in the LiteSpeed User-End cPanel plugin is being actively exploited in the wild, enabling any authenticated cPanel user to execute arbitrary scripts as root and gain full server control. Tracked as CVE-2026-48172 with a maximum CVSS score of 10.0, the flaw has been patched as of May 21, 2026. The root cause is a logic […] The post LiteSpeed cPanel Plugin 0-Day Exploited for Server Root Access appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/litespeed-cpanel-plugin-0-day-exploited/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Critical Cisco SD-WAN 0-Day Exploited for Root Access in Active Cyberattacks
  2. April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs
  3. Five steps to become Mythos ready
  4. Five steps to become Mythos ready