> TritonInfoSec News
Home / May 28, 2026 / Story
0
#2 BleepingComputer general May 27, 2026 at 10:06 UTC

CISA gives feds 4 days to patch actively exploited cPanel plugin flaw

By Sergiu Gatlan

AI Summary

CISA issued an emergency directive giving federal agencies just four days to patch a critical zero-day vulnerability in the LiteSpeed cPanel user-end plugin, which is actively being exploited to execute scripts with root privileges. The flaw was resolved the prior week but had already seen in-the-wild exploitation before a patch was available. Web hosting administrators running cPanel-based deployments should prioritize this patch immediately.

Read full article → https://www.bleepingcomputer.com/news/security/cis…

Relevance score: 87.0/100

# More from May 28

  1. 1
    Glassworm botnet disrupted after resilient C2 infrastructure takedown BleepingComputer
  2. 3
    Iranian intelligence service behind hack of LA transit system, researchers say The Record
  3. 4
    FBI: Hackers Sending Operatives in Person to Insert USB Drives and Steal Data SecurityWeek
  4. 5
    Gitea Vulnerability Exposes Private Container Images without Authentication The Hacker News
  5. 6
    Lithuania Suspects Foreign Involvement in Data Leak of Over 600,000 National Register Entries SecurityWeek
  6. 7
    Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment SecurityWeek
  7. 8
    Admins of Bulletproof Hosting Service Used by Russian Hackers Arrested in Netherlands SecurityWeek
  8. 9
    CERT-In Mandates 12-Hour Patching for Internet-Facing Flaws Amid AI-Assisted Attacks The Hacker News
  9. 10
    185,000 Likely Impacted by 7-Eleven Data Breach SecurityWeek