Dear Customer,
We would like to inform you about a critical security vulnerability affecting cPanel & WHM, identified as CVE-2026-41940.
Official cPanel Link:
https://support.cpanel.net/hc/en-us/articles/40073787579671-Security-CVE-2026-41940-cPanel-WHM-WP2-Security-Update-04-28-2026
We strongly recommend updating your cPanel installation as soon as possible to a patched version.
Step 1: Check your current cPanel version
Run:
/usr/local/cpanel/cpanel -V
Step 2: Apply the correct update method
If you are running cPanel version 110 on CentOS 7, run:
sed -i 's/^CPANEL=release/CPANEL=11.110/I' /etc/cpupdate.conf
yum install epel-release -y
/scripts/upcp --force
If you are running CentOS 6, run:
sed -i 's/^CPANEL=release/CPANEL=11.86/I' /etc/cpupdate.conf
/scripts/upcp --force
For all other versions / operating systems, simply run:
/scripts/upcp --force
This vulnerability may allow unauthorized access and compromise of your server, including hosted accounts and data.
Please treat this as urgent and apply updates immediately.
If you are unable to perform the update yourself, we recommend opening a support ticket with cPanel for assistance with the upgrade process.
Alternatively, you may contact our support team. If access details are required, please provide them securely via a protected support channel (never via plain email).
If you need assistance, our team is available to help.
Best regards,
IntoVPS Support Team
Joi, Aprilie 30, 2026
