CVE-2026-54420

CVSS v3.1

8.5

High

Vector

AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions LiteSpeed cPanel plugin versions prior to 2.4.8 LiteSpeed WHM PlugIn versions prior to 5.3.2.0

Description The software mishandles symlinks provided by a user with FTP or web shell access on a shared hosting server running CloudLinux/CageFS. This issue was exploited in the wild in May 2026.

Recommendations Update LiteSpeed cPanel plugin to version 2.4.8 or later. Update LiteSpeed WHM PlugIn to version 5.3.2.0 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-61

Related Identifiers

CVE-2026-54420

Affected Products

Litespeed Whm Plugin

Litespeed Cpanel Plugin

CVE-2026-54420

Weakness Enumeration

Related Identifiers

Affected Products

References · 4