Hackers Are Actively Exploiting A Bug In cPanel, Used By Millions Of Websites

Hackers Are Actively Exploiting A Bug In cPanel, Used By Millions Of Websites

A critical cPanel vulnerability is putting millions of websites at risk, and security experts say hackers are already exploiting it. If you run a website, use web hosting services, or manage servers, this issue could directly affect you. The flaw allows attackers to bypass login systems and gain full control of servers, making it one of the most serious cybersecurity threats of 2026 so far. Here’s what happened, why it matters, and what immediate steps website owners should take. A Critical cPanel Vulnerability Exposes Millions of Websites A newly discovered flaw in cPanel and WebHost Manager is sending shockwaves across the global web hosting industry. These tools are widely used to manage servers, domains, email systems, and databases—essentially acting as the backbone of millions of websites. Security researchers have confirmed that the vulnerability, tracked as CVE-2026-41940, allows hackers to bypass authentication systems entirely. In simple terms, attackers can skip the login scre…