{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreib6hxkrae5vkmnnppzotwwdexwjeyo7s3od4alaxlsengh7glj3v4",
    "uri": "at://did:plc:ghkvexthfanuyq7fb5veq6tw/app.bsky.feed.post/3mmjaf7ah6nx2"
  },
  "coverImage": {
    "$type": "blob",
    "ref": {
      "$link": "bafkreib4n2kzdrvfjkiobtat6d7fyzoqweihwr6g3aws3fi2gjpwtzlkpq"
    },
    "mimeType": "image/png",
    "size": 125409
  },
  "path": "/2026/05/litespeed-cpanel-plugin-cve-2026-48172.html",
  "publishedAt": "2026-05-23T07:35:13.000Z",
  "site": "https://thehackernews.com",
  "textContent": "A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild.\n\nThe flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to an instance of incorrect privilege assignment that an attacker could abuse to run arbitrary scripts with elevated permissions.\n\n\"Any cPanel user (including an attacker or a compromised account) may",
  "title": "LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root"
}