Skip to content
The Nexus
SECURITYMay 23 · 07:35 UTCTHE HACKER NEWS[email protected] (The Hacker News)

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

A critical security vulnerability (CVE-2026-48172) in LiteSpeed User-End cPanel Plugin is being actively exploited, allowing attackers to execute arbitrary scripts with root privileges due to incorrect privilege assignment.

Nexus surfaces and summarizes. The full story lives at the source.

Mentioned
Spot something wrong with this article?Report a problem →
Forward this
Related Signal

Adjacent reporting