GBHackers

CISA Alert Highlights Active Exploitation of cPanel & WHM Security Bug

ATT&CK techniques detected

2 predictions

T1190Exploit Public-Facing Application

98%

“cisa alert highlights active exploitation of cpanel & whm security bug the us cybersecurity and infrastructure security agency ( cisa ) has raised the alarm over a critical security vulnerability affecting webpros cpanel & webhost manager ( whm ) and wp2 ( wordpress squared ). on…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

T1190Exploit Public-Facing Application

39%

“or password. webhost manager and cpanel are foundational tools used by hosting providers to manage web servers, create user accounts, and maintain databases. unauthorized access to these control panels grants attackers extensive administrative control over the server environment.…”

Which technique(s) should be tagged here? Pick zero or more — leaving blank just records that the original was wrong.

No matches for .

Loading techniques…

Summary

The US Cybersecurity and Infrastructure Security Agency (CISA) has raised the alarm over a critical security vulnerability affecting WebPros cPanel & WebHost Manager (WHM) and WP2 (WordPress Squared). On April 30, 2026, CISA officially added this flaw to its Known Exploited Vulnerabilities (KEV) catalog, confirming that malicious actors are actively abusing it in real-world attacks. […]

The post CISA Alert Highlights Active Exploitation of cPanel & WHM Security Bug appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.