Skip to content

CVE-2026-41940

cPanel/WHM authentication bypass via CRLF injection (mass exploitation ongoing, KEV)

First seen

2026-05-06

Last seen

2026-05-06

Appearances

1

External references

NVD · cve.org · CISA KEV

All cited sources for this CVE (4)

Brief appearances

CTI Daily Brief — 2026-05-06
daily18 items
2026-05-06