cPanel and WHM Authentication Bypass via Login Flow_CVE-2026-41940

9.3 / 10

CRITICAL

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Description

cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, and 11.136.0.5 contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized access to the control panel.

AI Analysis

Authentication bypass vulnerability in cPanel and WHM login flow

Basic Information

ID CVE-2026-41940

Source VulnCheck

Published Apr 29, 2026 at 15:10

Affected Product

Vendor cPanel, L.L.C.

Product cPanel & WHM

Version 11.110.0

Affected Versions cPanel, L.L.C. cPanel & WHM 11.110.0
cPanel, L.L.C. cPanel & WHM 11.118.0
cPanel, L.L.C. cPanel & WHM 11.126.0
cPanel, L.L.C. cPanel & WHM 11.132.0
cPanel, L.L.C. cPanel & WHM 11.134.0
cPanel, L.L.C. cPanel & WHM 11.136.0
cPanel, L.L.C. WP Squared 11.136.1

CWE Classification

CWE-306

AI Assessment

AI Score 9.3 / 10

AI Severity Critical

Vendor cPanel, L.L.C.

Product cPanel and WHM

Version 11.110.0, 11.118.0, 11.126.0, 11.132.0, 11.134.0, 11.136.0

References

{
    "lastseen": "",
    "description": "cPanel and WHM versions prior to 11.110.0.97, 11.118.0.63, 11.126.0.54, 11.132.0.29, 11.134.0.20, and 11.136.0.5 contain an authentication bypass vulnerability in the login flow that allows unauthenticated remote attackers to gain unauthorized access to the control panel.",
    "published": "2026-04-29T15:10:37.899Z",
    "modified": "2026-04-29T15:10:37.899Z",
    "type": "cve",
    "title": "cPanel and WHM Authentication Bypass via Login Flow",
    "source": "VulnCheck",
    "references": "https://support.cpanel.net/hc/en-us/articles/40073787579671-cPanel-WHM-Security-Update-04-28-2026\nhttps://docs.cpanel.net/release-notes/release-notes\nhttps://docs.wpsquared.com/changelogs/versions/changelog/#13617\nhttps://www.namecheap.com/status-updates/ongoing-critical-security-vulnerability-in-cpanel-april-28-2026\nhttps://www.vulncheck.com/advisories/cpanel-and-whm-authentication-bypass-via-login-flow",
    "id": "CVE-2026-41940",
    "bulletinFamily": "",
    "cwe": [
        "CWE-306"
    ],
    "cvelist": null,
    "sourceData": "cPanel, L.L.C. cPanel & WHM 11.110.0\ncPanel, L.L.C. cPanel & WHM 11.118.0\ncPanel, L.L.C. cPanel & WHM 11.126.0\ncPanel, L.L.C. cPanel & WHM 11.132.0\ncPanel, L.L.C. cPanel & WHM 11.134.0\ncPanel, L.L.C. cPanel & WHM 11.136.0\ncPanel, L.L.C. WP Squared 11.136.1",
    "sourceHref": "",
    "cvss": {
        "score": 9.3,
        "severity": "CRITICAL",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "cPanel & WHM",
    "version": "11.110.0",
    "vendor": "cPanel, L.L.C.",
    "ai_description": "Authentication bypass vulnerability in cPanel and WHM login flow",
    "ai_severity": "Critical",
    "ai_vendor": "cPanel, L.L.C.",
    "ai_product": "cPanel and WHM",
    "ai_version": "11.110.0, 11.118.0, 11.126.0, 11.132.0, 11.134.0, 11.136.0",
    "ai_score": 9.3
}