Skip to content
The Nexus
SECURITYMay 11 · 17:54 UTCTHE HACKER NEWS[email protected] (The Hacker News)

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

A threat actor named Mr_Rot13 is exploiting a cPanel vulnerability to deploy a backdoor called Filemanager, leveraging CVE-2026-41940 to bypass authentication and gain elevated control. The vulnerability affects cPanel and WebHost Manager, allowing remote attackers to compromise environments. This active exploitation poses a significant security risk.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this