WHM/cPanel contain an authentication bypass vulnerability in the login flow, which allows unauthenticated remote attackers to gain unauthorized access to the control panel. Reports indicate that once access was obtained, attackers encrypted or deleted data to cause damage.
Resolution
WHM/cPanel has released a patch and is rolling out updates. Please verify that your installation is running at least one of the versions listed below. You can check this by viewing the information displayed at the top of any WHM page or at the footer of any cPanel page.
11.86.0.41 and above
11.110.0.97 and above
11.118.0.63 and above
11.124.0.35 and above
11.126.0.54 and above
11.130.0.19 and above
11.132.0.29 and above
11.134.0.20 and above
11.136.0.5 and above
Solution
If your WHM/cPanel version falls below the mentioned version number, in WHM > System Update and click UPDATE button to proceed with the update or execute the following commands from SSH terminal.
/scripts/upcp --force
/scripts/restartsrv_cpsrvd --hard
All servers under our server management plans are updated, users are advised to double check.
Do reach out to us at https://support.yeahhost.com.my if you are unable to update your WHM/cPanel.
For more information, visit:
https://nvd.nist.gov/vuln/detail/CVE-2026-41940
Yeahhost Server Team
Wednesday, April 29, 2026