1 vulnerabilities across 1 products scored HIGH or above on June 14, 2026.
- HIGH: 1
[HIGH] litespeed_technologies/cpanel_plugin
1 CVE | CVSS 3.1: 8.5 | AAS 10.0
cpe:2.3:a:litespeed_technologies:cpanel_plugin:*:*:*:*:*:*:*:*
LiteSpeed cPanel plugin before 2.4.8 (as distributed in LiteSpeed WHM PlugIn before 5.3.2.0) mishandles symlinks provided by a user with FTP or web shell access on a shared hosting server running CloudLinux/CageFS, as exploited in the wild in May 2026..
- CVE-2026-54420 (CVSS 3.1: 8.5)