All Tech Blogs Explore Tags Send Feedback

Endigest

© 2026 Endigest. All rights reserved.

About
Privacy
Terms
Contact
RSS

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root | Endigest

The Hacker News

|Security

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

2026-05-23

1 min read

1

by info@thehackernews.com (The Hacker News)

Get the latest tech trends every morning

Receive daily AI-curated summaries of engineering articles from top tech companies worldwide.

Email address

Endigest AI Core Summary

A maximum-severity vulnerability (CVE-2026-48172, CVSS 10.0) in LiteSpeed cPanel Plugin is being actively exploited in the wild.

•The flaw enables any cPanel user to execute arbitrary scripts with root privileges via the lsws.redisAble function
•Affected versions range from 2.3 to 2.4.4; patch available in version 2.4.5
•Users should upgrade to WHM Plugin 5.3.1.0 (which includes cPanel plugin v2.4.7 or higher)
•An indicator of compromise using grep command is provided to detect exploitation attempts
•As an interim measure, users can uninstall the user-end plugin using lscmctl

This summary was automatically generated by AI based on the original article and may not be fully accurate.

Related Articles

The Hacker News

ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface

Security·2026-05-29

Cloud CISO Perspectives: How to build an AI-ready security program for the public sector

Security·2026-05-29

The Hacker News

Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit

Security·2026-05-29

The Hacker News

New Russian-Linked GREYVIBE Targets Ukraine with AI-Powered Cyberattacks

Security·2026-05-29