A critical authentication bypass vulnerability in cPanel & WHM, tracked as CVE-2026-41940, is being actively exploited in the wild, forcing emergency patch rollouts across the global web hosting industry. Security researchers at watchTowr have released a proof-of-concept (PoC) detection tool that confirms the flaw enables unauthenticated attackers to gain root-level access to vulnerable hosting control panels, […] The post cPanel 0-Day Auth Bypass Exploited in the Wild, PoC Released appeared first on Cyber Security News.