An urgent security update has been released to address a critical vulnerability affecting older versions of cPanel and WebHost Manager (WHM). This vulnerability could potentially allow unauthorized access to the control panel without authentication.
Owned by WebPros International, cPanel and WHM are popular Linux-based web hosting control panels used for server and website management. While WHM offers server-level control, cPanel provides access to website backend, webmail, and databases.
Both cPanel and WHM are widely used hosting control panels known for their user-friendly interfaces and seamless integration with hosting environments.
Although specific technical details of the vulnerability have not been disclosed, its severity prompted hosting provider Namecheap to temporarily block access to ports 2083 and 2087, which are commonly used by WHM and cPanel.
In response to the security issue, cPanel has released an emergency update in versions:
Administrators are advised to run the command /scripts/upcp –force to ensure they are using a patched version of the software. Servers running unsupported versions are urged to upgrade immediately to receive necessary security updates.
The potential consequences of the vulnerability include unauthorized access to the control panel, allowing attackers to manipulate website content, steal data, and engage in malicious activities such as spamming or phishing.
Website owners utilizing cPanel and WHM should promptly update to the latest secure versions to mitigate the risk of exploitation.
An AI exploit chain bypassed renderer and OS sandboxes using four zero-day vulnerabilities. Learn more about autonomous validation at the upcoming summit on May 12 & 14.
Discover how autonomous validation can identify vulnerabilities, verify controls, and facilitate effective remediation.
Claim Your Spot
EU Takes Action Against Instagram and Facebook for Violating Illegal Content Rules
Warning: Facebook Creators Face Monetization Loss for Stealing and Reposting Videos
Facebook’s New Look: A Blend of Instagram’s Style
Facebook Compliance: ICE-tracking Page Removed After US Government Intervention
Facebook and Instagram to Reduce Personalized Ads for European Users
InstaDub: Meta’s AI Translation Tool for Instagram Videos
Reclaim Your Account: Facebook and Instagram Launch New Hub for Account Recovery
Meta discontinues Messenger apps for Windows and macOS
Subscribe to our weekly newsletter below and never miss the latest News or an exclusive offer.
