1. Critical Auth Bypass Vulnerability CVE-2026-41940 in cPanel/WHM and WP2 WordPress Squared Puts Hosting Infrastructure Under Immediate Pressure
A critical authentication bypass vulnerability, CVE-2026-41940, has been identified in WebPros cPanel & WHM (versions 11.40 through 136.x) and WP2 WordPress Squared (prior to 136.1.7), triggering urgent patching efforts across web hosting environments. The flaw, classified as CWE-306 (Missing Authentication for Critica...