CVE-2026-54420 - Geek Feed

Security
Tech News

CISA warns of another cPanel plugin flaw exploited in attacks

June 19, 2026June 19, 2026 geekfeed0Tagged Actively Exploited, CISA, cPanel, CVE-2026-48172, CVE-2026-54420, LiteSpeed, LiteSpeed cPanel, Plugin

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. government agencies three days to secure their servers against an actively exploited vulnerability (CVE-2026-54420) in the LiteSpeed cPanel user-end plugin. Tracked as CVE-2026-48172, this high-severity vulnerability was reported by Namecheap and allows attackers with FTP or web shell access to escalate privileges to root on […]

2 mins read