BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

May 23, 2026/in General News

A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild.

The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to an instance of incorrect privilege assignment that an attacker could abuse to run arbitrary scripts with elevated permissions.

“Any cPanel user (including an attacker or a compromised account) may

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 admin https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png admin2026-05-23 08:06:422026-05-23 08:06:42LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise Link to: Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets, merchandise Foul play: Fake FIFA websites target soccer fans looking for World Cup tickets,... Link to: Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV Link to: Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEVDrupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
Scroll to top Scroll to top Scroll to top