CVE-2026-41940 - Geek Feed

Critrical cPanel flaw mass-exploited in “Sorry” ransomware attacks

May 5, 2026May 5, 2026 geekfeed0Tagged Actively Exploited, cPanel, CVE-2026-41940, Encryption, Extortion, ransomware, Sorry

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in “Sorry” ransomware attacks. This week, an emergency update for WHM and cPanel was released to fix a critical authentication bypass flaw that allows attackers to access control panels. WHM and cPanel are Linux-based web hosting control panels for server […]

2 mins read

Critical cPanel and WHM bug exploited as a zero-day, PoC now available

May 3, 2026May 3, 2026 geekfeed0Tagged Actively Exploited, Authentication Bypass, cPanel, CVE-2026-41940, exploit, poc, Proof of Concept, vulnerability

The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts since late February. It is unclear when exploitation started, but KnownHost, a hosting provider that uses cPanel, said the day the vulnerability was disclosed that “successful exploits have been seen […]

2 mins read

cPanel, WHM emergency update fixes critical auth bypass bug

May 2, 2026May 2, 2026 geekfeed0Tagged Authentication Bypass, cPanel, CVE-2026-41940, Hosting, Namecheap, vulnerability, Website, Website Takeover

A critical vulnerability affecting all but the latest versions of cPanel and the WebHost Manager (WHM) dashboard could be exploited to obtain access to the control panel without authentication. The security issue, currently identified as CVE-2026-41940 and with a severity score of 9.8, has been addressed in an emergency update that requires running a command manually to retrieve […]

2 mins read