cPanel patches critical authentication bypass flaw after emergency warning

cPanel has released emergency security updates for a critical authentication bypass vulnerability affecting cPanel & WHM, cPanel DNSOnly, and WP Squared. The flaw is tracked as CVE-2026-41940 and affects cPanel software versions after 11.40. If left unpatched, the issue can allow unauthenticated remote attackers to bypass login protections and gain unauthorized access to the control […] The post cPanel patches critical authentication bypass flaw after emergency warning appeared first on VPN Central.