4 matches found
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor
A threat actor named MrRot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environments. The attack exploits CVE-2026-41940, a vulnerability impacting cPanel and WebHost Manager WHM that could result ...
EUVD-2017-9528
Malware in sbrugna...
CVE-2016-10827
CVE-2016-10827 : A stored XSS vulnerability in cPanel/WHM (Edit System Mail Preferences) affects versions before 55.9999.141. The issue is described as a self-stored cross-site scripting flaw that could be exploited through the affected mail preferences UI. Public references in the connected docu...
CVE-2018-20914
In cPanel before 70.0.23, OpenID providers can inject arbitrary data into cPanel session files SEC-368...