{"vulnerability": "CVE-2026-2920", "sightings": [{"uuid": "cb935c63-4034-4319-9151-e9f067ca5769", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-2920", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-critical-vulnerabilities-gstreamer-patch-immediately", "content": "", "creation_timestamp": "2026-03-16T15:47:07.000000Z"}, {"uuid": "6e72c41d-5506-4280-8dd9-ee0e9b12ce1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2920", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-26-164/", "content": "", "creation_timestamp": "2026-03-06T05:00:00.000000Z"}, {"uuid": "04745430-d449-4e58-9409-fb775715c8e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-2920", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mhcqhjr63r2l", "content": "", "creation_timestamp": "2026-03-18T05:20:09.854439Z"}, {"uuid": "89969d94-d3fd-4582-b1b1-2748cf891711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/openfactory.peering.social.ap.brid.gy/post/3mle5fdes5pb2", "content": "Unser t\u00e4glich CVE Emergency patch gib uns heute\n\nCVE-2026-29201, CVE-2026-29202, and CVE-2026-29203\n\nFun times.", "creation_timestamp": "2026-05-08T16:25:01.768344Z"}, {"uuid": "b70defb7-4d89-4df7-802d-4a31e363cb92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29200", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mkzp7q7ikj2g", "content": "CVE-2026-29200: A 9.9 CVSS Comet Backup Flaw Granting Total Cross-Tenant Takeover", "creation_timestamp": "2026-05-04T12:44:43.271634Z"}, {"uuid": "cfbe9902-9872-4a82-8d3c-ad1d2a807646", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-29200", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116515132214621660", "content": "\ud83d\udea8 CVE-2026-29200: CRITICAL IDOR in WebPros Comet Backup (20.11.0 \u2013 26.1.1, 26.2.1) lets tenant admins impersonate any end user on the server. No patch yet \u2014 restrict admin access and monitor for suspicious cross-tenant activity. https://radar.offseq.com/threat/cve-2026-29200-cwe-639-insecure-direct-object-refe-d3747bfb #OffSeq #infosec #CVE202629200", "creation_timestamp": "2026-05-04T07:30:25.921366Z"}, {"uuid": "08159aad-0b0c-4bdc-a771-f3fd527ea78e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-29200", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3mkz5ns63hh2o", "content": "CRITICAL: WebPros Comet Backup (20.11.0 \u2013 26.1.1, 26.2.1) has an IDOR flaw letting tenant admins impersonate end users across tenants. No patch yet \u2014 restrict admin rights & monitor activity. https://radar.offseq.com/threat/cve-2026-29200-cwe-639-insecure-direct-object-refe-d3747bfb #OffSeq #CVE2...", "creation_timestamp": "2026-05-04T07:30:28.016407Z"}, {"uuid": "0dbd682b-6d14-4994-bbbe-af953c6f6ed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/cpanel-security-advisory-av26-437", "content": "", "creation_timestamp": "2026-05-08T11:49:02.000000Z"}, {"uuid": "3c8a6fde-17c8-40b4-8433-ddc8cad41ff0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/cpanel-security-advisory-av26-437", "content": "", "creation_timestamp": "2026-05-08T11:49:02.000000Z"}, {"uuid": "cc903a22-8d64-489a-b951-6f0dfcacdf35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://cyber.gc.ca/en/alerts-advisories/cpanel-security-advisory-av26-437", "content": "", "creation_timestamp": "2026-05-08T11:49:02.000000Z"}, {"uuid": "75fd1e25-4fc7-4fcf-8440-de6c1bf42eb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlekri3yqc2c", "content": "\ud83d\udfe0 CVE-2026-29202 - High (8.8)\n\nInsufficient input validation of the `plugin` parameter of the `create_user` plugin allows arbitr...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-29202/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:24:27.066400Z"}, {"uuid": "9335e0b6-cc05-468f-9164-4e20331c0111", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlekt3kq262w", "content": "\ud83d\udfe0 CVE-2026-29203 - High (8.8)\n\nA chmod call in the cPanel Nova plugin's Cpanel::Nova::Connector follows symlinks, allowing setti...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-29203/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-08T20:25:20.999730Z"}, {"uuid": "cf5a74c5-902c-4906-b27f-0173ca11c996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/openfactory.peering.social.ap.brid.gy/post/3mle5fdes5pb2", "content": "Unser t\u00e4glich CVE Emergency patch gib uns heute\n\nCVE-2026-29201, CVE-2026-29202, and CVE-2026-29203\n\nFun times.", "creation_timestamp": "2026-05-08T16:25:01.907387Z"}, {"uuid": "a26d8bad-4197-4d86-9d66-495a771d3e10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/openfactory.peering.social.ap.brid.gy/post/3mle5fdes5pb2", "content": "Unser t\u00e4glich CVE Emergency patch gib uns heute\n\nCVE-2026-29201, CVE-2026-29202, and CVE-2026-29203\n\nFun times.", "creation_timestamp": "2026-05-08T16:25:02.043569Z"}, {"uuid": "ac68d153-b781-4c3c-8f42-ad3469f72c21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://thehackernews.com/2026/05/cpanel-whm-patch-3-new-vulnerabilities.html", "content": "cPanel has released updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that could be exploited to achieve privilege escalation, code execution, and denial-of-service.\nThe list of vulnerabilities is as follows -\n\nCVE-2026-29201 (CVSS score: 4.3) - An insufficient input validation of the feature file name in the \"feature::LOADFEATUREFILE\" adminbin call that could result", "creation_timestamp": "2026-05-09T05:16:00.000000Z"}, {"uuid": "7b4c163e-2911-4f36-a963-6f7109c760c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mlepr6ouzy27", "content": "`create_user`\u30d7\u30e9\u30b0\u30a4\u30f3\u306e`plugin`\u30d1\u30e9\u30e1\u30fc\u30bf\u306e\u5165\u529b\u691c\u8a3c\u4e0d\u5099\u306b\u3088\u308a\u3001\u8a8d\u8a3c\u6e08\u307f\u30a2\u30ab\u30a6\u30f3\u30c8\u306e\u30b7\u30b9\u30c6\u30e0\u30e6\u30fc\u30b6\u30fc\u3068\u3057\u3066\u4efb\u610f\u306ePerl\u30b3\u30fc\u30c9\u5b9f\u884c\u304c\u53ef\u80fd\u306b\u306a\u308b\u8106\u5f31\u6027\u3002\nCVE-2026-29202 CVSS 8.8 | HIGH", "creation_timestamp": "2026-05-08T21:53:45.606743Z"}, {"uuid": "f8f166ee-e562-42de-aef0-79e23c6dd68a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mlepsmramd2t", "content": "cPanel Nova\u30d7\u30e9\u30b0\u30a4\u30f3\u306echmod\u51e6\u7406\u3067\u30b7\u30f3\u30dc\u30ea\u30c3\u30af\u30ea\u30f3\u30af\u3092\u8fbf\u308a\u3001\u4efb\u610f\u30d5\u30a1\u30a4\u30eb\u306broot\u6a29\u9650\u304c\u4ed8\u4e0e\u3055\u308c\u308b\u8106\u5f31\u6027\u3002\u8a8d\u8a3c\u6e08\u307f\u30e6\u30fc\u30b6\u30fc\u304c\u3001\u30db\u30fc\u30e0\u30c7\u30a3\u30ec\u30af\u30c8\u30ea\u4e0b\u306e\u30ec\u30ac\u30b7\u30fcNova\u30d1\u30b9\u306b\u30b7\u30f3\u30dc\u30ea\u30c3\u30af\u2026\nCVE-2026-29203 CVSS 8.8 | HIGH", "creation_timestamp": "2026-05-08T21:54:33.627576Z"}, {"uuid": "aad64d2f-02ca-40be-9db3-eb9361cfa8be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116539015130620185", "content": "Rien ne dit \u201cbon week-end\u201d comme trois CVE cPanel annonc\u00e9es un vendredi, avec les d\u00e9tails techniques livr\u00e9s pile au moment du patch -->c\u2019est-\u00e0-dire \u00e0 18h, l\u2019heure sacr\u00e9e de l\u2019ap\u00e9ro.\nSant\u00e9 aux admins qui vont lancer /scripts/upcp avec une main sur le clavier et l\u2019autre sur le verre. \ud83d\udc47**\"To help protect customers prior to patch availability, technical details about vulnerabilities will be released alongside the patches. Full technical details will be published on our support page at the same time the patch is released. The CVE IDs are CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203. \nPatch & Affected Versions The patch will be available on May 08 at 12:00pm EST and will be distributed through the standard cPanel automatic update process and through the manual update process. We strongly recommend performing a manual update with /scripts/upcp once the patch is made available.\"**\ud83d\udc47 https://www.reddit.com/r/cpanel/comments/1t6wf5n/cpanel_whm_security_update_cve202629201/\n#CpanelVulnerability #cpanel #CyberVeille #vuln #infosec", "creation_timestamp": "2026-05-08T12:44:09.921261Z"}, {"uuid": "5c8c2f70-f2e6-4796-872d-4b275673b9b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116539015130620185", "content": "Rien ne dit \u201cbon week-end\u201d comme trois CVE cPanel annonc\u00e9es un vendredi, avec les d\u00e9tails techniques livr\u00e9s pile au moment du patch -->c\u2019est-\u00e0-dire \u00e0 18h, l\u2019heure sacr\u00e9e de l\u2019ap\u00e9ro.\nSant\u00e9 aux admins qui vont lancer /scripts/upcp avec une main sur le clavier et l\u2019autre sur le verre. \ud83d\udc47**\"To help protect customers prior to patch availability, technical details about vulnerabilities will be released alongside the patches. Full technical details will be published on our support page at the same time the patch is released. The CVE IDs are CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203. \nPatch & Affected Versions The patch will be available on May 08 at 12:00pm EST and will be distributed through the standard cPanel automatic update process and through the manual update process. We strongly recommend performing a manual update with /scripts/upcp once the patch is made available.\"**\ud83d\udc47 https://www.reddit.com/r/cpanel/comments/1t6wf5n/cpanel_whm_security_update_cve202629201/\n#CpanelVulnerability #cpanel #CyberVeille #vuln #infosec", "creation_timestamp": "2026-05-08T12:44:10.143485Z"}, {"uuid": "cae16f27-3c33-40fe-94b0-ea3aec8f0f44", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116539015130620185", "content": "Rien ne dit \u201cbon week-end\u201d comme trois CVE cPanel annonc\u00e9es un vendredi, avec les d\u00e9tails techniques livr\u00e9s pile au moment du patch -->c\u2019est-\u00e0-dire \u00e0 18h, l\u2019heure sacr\u00e9e de l\u2019ap\u00e9ro.\nSant\u00e9 aux admins qui vont lancer /scripts/upcp avec une main sur le clavier et l\u2019autre sur le verre. \ud83d\udc47**\"To help protect customers prior to patch availability, technical details about vulnerabilities will be released alongside the patches. Full technical details will be published on our support page at the same time the patch is released. The CVE IDs are CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203. \nPatch & Affected Versions The patch will be available on May 08 at 12:00pm EST and will be distributed through the standard cPanel automatic update process and through the manual update process. We strongly recommend performing a manual update with /scripts/upcp once the patch is made available.\"**\ud83d\udc47 https://www.reddit.com/r/cpanel/comments/1t6wf5n/cpanel_whm_security_update_cve202629201/\n#CpanelVulnerability #cpanel #CyberVeille #vuln #infosec", "creation_timestamp": "2026-05-08T12:44:10.305859Z"}, {"uuid": "cd4167b3-c43e-460d-85c4-77c88512f9ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mlhlj7bx752u", "content": "cPanel released a second emergency security patch for three new high-severity vulnerabilities (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) on May 8, 2026, following a major ransomware attack. This indicates a deeper code audit after the previous compromise.", "creation_timestamp": "2026-05-10T01:15:42.352667Z"}, {"uuid": "936e1748-82ab-4ac1-935d-090fb98579d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mlhlj7bx752u", "content": "cPanel released a second emergency security patch for three new high-severity vulnerabilities (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) on May 8, 2026, following a major ransomware attack. This indicates a deeper code audit after the previous compromise.", "creation_timestamp": "2026-05-10T01:15:42.494363Z"}, {"uuid": "86a593e4-73af-45c1-b36d-d2060df143d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/hn-frontpage-bot.bsky.social/post/3mlhlj7bx752u", "content": "cPanel released a second emergency security patch for three new high-severity vulnerabilities (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) on May 8, 2026, following a major ransomware attack. This indicates a deeper code audit after the previous compromise.", "creation_timestamp": "2026-05-10T01:15:42.635061Z"}, {"uuid": "41f37002-9d94-4fc5-b4cb-9fb2758e02ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116544182422691954", "content": "Spoiler de l'\u00e9pisode de hier : cPanel a bien livr\u00e9 les d\u00e9tails techniques en m\u00eame temps que les patchs. Au menu de l'after :\n\u2022 CVE-2026-29201 : path traversal :8bitrainbow:  via feature::LOADFEATUREFILE \u2192 fichier arbitraire en world-readable\u2022 CVE-2026-29202 : injection Perl dans create_user (param\u00e8tre plugin)\u2022 CVE-2026-29203 : symlink mal g\u00e9r\u00e9 \u2192 chmod arbitraire \u2192 DoS + escalade de privil\u00e8ges\n/scripts/upcp et go apero!Bon courage aux admins de garde \ud83e\udee1\nhttps://docs.cpanel.net/changelogs/134-change-log/#134025\nhttps://vulnerability.circl.lu/vuln/CVE-2026-29203\n#CyberVeille #cpanel #CVE_2026_29203#CVE_2026_29202#CVE_2026_29201", "creation_timestamp": "2026-05-09T10:38:17.069005Z"}, {"uuid": "0bde6635-d7a8-4751-84a1-b75ee06f3412", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mli2inlydw2y", "content": "Critical: Three New cPanel & WHM Vulnerabilities (CVEs 2026-29201/2/3) Threaten Code Execution and DoS \u2014 Patch Immediately +\u00a0Video\n\nIntroduction: Three newly disclosed critical security vulnerabilities in cPanel & WHM, tracked as CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, could allow\u2026", "creation_timestamp": "2026-05-10T05:43:50.404246Z"}, {"uuid": "0b01fb39-9ba2-4fb2-a209-6338b9edcc70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mli2inlydw2y", "content": "Critical: Three New cPanel & WHM Vulnerabilities (CVEs 2026-29201/2/3) Threaten Code Execution and DoS \u2014 Patch Immediately +\u00a0Video\n\nIntroduction: Three newly disclosed critical security vulnerabilities in cPanel & WHM, tracked as CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, could allow\u2026", "creation_timestamp": "2026-05-10T05:43:50.542455Z"}, {"uuid": "ebcb888f-219c-44d6-8872-d7b3e518cff0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3mli2inlydw2y", "content": "Critical: Three New cPanel & WHM Vulnerabilities (CVEs 2026-29201/2/3) Threaten Code Execution and DoS \u2014 Patch Immediately +\u00a0Video\n\nIntroduction: Three newly disclosed critical security vulnerabilities in cPanel & WHM, tracked as CVE-2026-29201, CVE-2026-29202, and CVE-2026-29203, could allow\u2026", "creation_timestamp": "2026-05-10T05:43:50.682083Z"}, {"uuid": "266d1148-29e6-49ed-9a89-ec6c738b47e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus-2026-13", "content": "", "creation_timestamp": "2026-05-08T12:13:22.000000Z"}, {"uuid": "b4b8c27e-e1ea-4651-90a4-507419d8f62d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus-2026-13", "content": "", "creation_timestamp": "2026-05-08T04:00:00.000000Z"}, {"uuid": "9d380c79-d7ae-4cab-91a6-67333350cd0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://www.kyberturvallisuuskeskus.fi/fi/haavoittuvuus-2026-13", "content": "", "creation_timestamp": "2026-05-08T04:00:00.000000Z"}, {"uuid": "6eb39437-4102-4b72-8edd-a0cf7bbcc8b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116544182422691954", "content": "Spoiler de l'\u00e9pisode de hier : cPanel a bien livr\u00e9 les d\u00e9tails techniques en m\u00eame temps que les patchs. Au menu de l'after :\n\u2022 CVE-2026-29201 : path traversal :8bitrainbow:  via feature::LOADFEATUREFILE \u2192 fichier arbitraire en world-readable\u2022 CVE-2026-29202 : injection Perl dans create_user (param\u00e8tre plugin)\u2022 CVE-2026-29203 : symlink mal g\u00e9r\u00e9 \u2192 chmod arbitraire \u2192 DoS + escalade de privil\u00e8ges\n/scripts/upcp et go apero!Bon courage aux admins de garde \ud83e\udee1\nhttps://docs.cpanel.net/changelogs/134-change-log/#134025\nhttps://vulnerability.circl.lu/vuln/CVE-2026-29203\n#CyberVeille #cpanel #CVE_2026_29203#CVE_2026_29202#CVE_2026_29201", "creation_timestamp": "2026-05-09T10:38:17.215832Z"}, {"uuid": "0fe2044c-c367-499b-bbb1-3b12b1012026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://infosec.exchange/users/decio/statuses/116544182422691954", "content": "Spoiler de l'\u00e9pisode de hier : cPanel a bien livr\u00e9 les d\u00e9tails techniques en m\u00eame temps que les patchs. Au menu de l'after :\n\u2022 CVE-2026-29201 : path traversal :8bitrainbow:  via feature::LOADFEATUREFILE \u2192 fichier arbitraire en world-readable\u2022 CVE-2026-29202 : injection Perl dans create_user (param\u00e8tre plugin)\u2022 CVE-2026-29203 : symlink mal g\u00e9r\u00e9 \u2192 chmod arbitraire \u2192 DoS + escalade de privil\u00e8ges\n/scripts/upcp et go apero!Bon courage aux admins de garde \ud83e\udee1\nhttps://docs.cpanel.net/changelogs/134-change-log/#134025\nhttps://vulnerability.circl.lu/vuln/CVE-2026-29203\n#CyberVeille #cpanel #CVE_2026_29203#CVE_2026_29202#CVE_2026_29201", "creation_timestamp": "2026-05-09T10:38:17.359819Z"}, {"uuid": "bc224517-8a2e-4e01-a48c-e03adfaf197e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/technoholic.bsky.social/post/3mlgzzadeim2l", "content": "cPanel updates fix 3 vulnerabilities in cPanel & WHM, including privilege escalation & DoS. CVE-2026-29201 has a CVSS score of 4.3. Update now to stay secure!", "creation_timestamp": "2026-05-09T20:02:32.789309Z"}, {"uuid": "fa504437-223f-4327-a988-8c39f5927d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mlrru23mbc2w", "content": "cpdavd \u306e\u30c0\u30a6\u30f3\u30ed\u30fc\u30c9\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u3067\u3001\u6a29\u9650\u7ba1\u7406\u3068\u30d1\u30b9\u30d5\u30a3\u30eb\u30bf\u30ea\u30f3\u30b0\u306e\u4e0d\u5099\u306b\u3088\u308a\u3001\u4efb\u610f\u306e\u30d5\u30a1\u30a4\u30eb\u304c\u8aad\u307f\u53d6\u3089\u308c\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u3002\nCVE-2026-29205 CVSS 8.6 | HIGH", "creation_timestamp": "2026-05-14T02:35:45.615110Z"}, {"uuid": "3ef53f68-cef1-4879-9a01-6bd7ec2a975c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlizxrgkd32y", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:03.814198Z"}, {"uuid": "9e06791a-87b4-4546-9632-7da43814735d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlizxrgkd32y", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:03.971742Z"}, {"uuid": "cab3bd09-026a-4935-98b1-a4e016e50fb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlizxrgkd32y", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:04.119329Z"}, {"uuid": "219db91c-02d5-499b-90ba-b67b6c9dec0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlizyboth425", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #PotatoSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:19.748015Z"}, {"uuid": "09de2881-d4c4-47d0-bced-c50bade9412f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlizyboth425", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #PotatoSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:20.035768Z"}, {"uuid": "d2c510c1-dafd-4e46-afee-e52e3beab9d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mlizyboth425", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) expose servers to RCE and DoS attacks. Admins must update immediately. #PotatoSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-10T15:07:20.306966Z"}, {"uuid": "31acdaa4-d9dc-42cd-aa3b-2d9de01d1736", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mlj6rgbnzch2", "content": "New cPanel vulnerabilities could allow file access and remote code execution cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation h...\n\n#Breaking #News #Security #cPanel #CVE-2026-29201 #CVE-2026-29202 #CVE-2026-29203 #Cybercrime [\u2026]", "creation_timestamp": "2026-05-10T16:33:03.184530Z"}, {"uuid": "91b80695-2b64-4591-a6b3-d4386926ca88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mlj6rgbnzch2", "content": "New cPanel vulnerabilities could allow file access and remote code execution cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation h...\n\n#Breaking #News #Security #cPanel #CVE-2026-29201 #CVE-2026-29202 #CVE-2026-29203 #Cybercrime [\u2026]", "creation_timestamp": "2026-05-10T16:33:03.327148Z"}, {"uuid": "81cefced-287e-4ee6-9a62-4173c86e0364", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3mlj6rgbnzch2", "content": "New cPanel vulnerabilities could allow file access and remote code execution cPanel fixed three flaws that could allow file reads, code execution, and privilege escalation. No active exploitation h...\n\n#Breaking #News #Security #cPanel #CVE-2026-29201 #CVE-2026-29202 #CVE-2026-29203 #Cybercrime [\u2026]", "creation_timestamp": "2026-05-10T16:33:03.473626Z"}, {"uuid": "d978685c-e91f-4161-99c1-5024075fada9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mlka652tl522", "content": "Top 3 CVE for last 7 days:\nCVE-2026-31431: 141 interactions\nCVE-2026-43284: 122 interactions\nCVE-2026-43500: 84 interactions\n\n\nTop 3 CVE for yesterday:\nCVE-2026-42511: 56 interactions\nCVE-2024-13362: 4 interactions\nCVE-2026-29201: 3 interactions\n", "creation_timestamp": "2026-05-11T02:30:39.800228Z"}, {"uuid": "ebdba29d-7e64-44bf-9269-2cee9d088bb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlljuslwde2l", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) allow RCE and DoS attacks. Admins must update immediately to secure servers. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-11T14:57:10.626925Z"}, {"uuid": "d826eac8-51e6-4ad3-9956-fba6e5fd62b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlljuslwde2l", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) allow RCE and DoS attacks. Admins must update immediately to secure servers. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-11T14:57:10.840233Z"}, {"uuid": "e007c547-cbda-4161-b02d-fc929616b4cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3mlljuslwde2l", "content": "Critical vulnerabilities in cPanel & WHM (CVE-2026-29201, CVE-2026-29202, CVE-2026-29203) allow RCE and DoS attacks. Admins must update immediately to secure servers. #CyberSecurity #cPanel #WHM #Vulnerability Link: thedailytechfeed.com/critical-cpa...", "creation_timestamp": "2026-05-11T14:57:11.009253Z"}, {"uuid": "d00dece1-7f99-4373-91d4-a7cf621b68f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "Telegram/rB8l1QMwML3-L-md48SJtXfKVla--a2WVaiAK-n-V-b3cw", "content": "", "creation_timestamp": "2026-05-09T07:58:26.000000Z"}, {"uuid": "93a5f117-af8c-488a-a33e-de5997ca35bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29204", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/84051", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #CVE-2026\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a cve-2026-29204-whmcs-clientarea-addonid\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a bogdanrotariu\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a PHP\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-05-13 08:59:20\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nCVE-2026-29204: upgrade-first notes, optional client-area hook, and lab PoC for authorized testing. Unofficial; not from WHMCS.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-05-13T09:00:04.000000Z"}, {"uuid": "c56cddfa-ecdf-4e1e-8d14-94989b901e2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "https://bsky.app/profile/infosecbot.bsky.social/post/3mlsn2zl2ax2o", "content": "cPanel's latest patch (11.134.0.26) for the pre-auth arbitrary file read issue (CVE-2026-29205) is incomplete. We made the call to not publish our research until a working patch is released. We are in to\u2026\n\n\ud83d\udd01 RT @infosec_au | reposted by @HackingLZ\nhttps://x.com/infosec_au/status/2054749885258449252", "creation_timestamp": "2026-05-14T10:42:50.830140Z"}, {"uuid": "bb42c05a-1378-45d8-832e-a655a28c1220", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29203", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-vulnerabilities-cpanel-and-whm-leading-privilege-escalation-patch", "content": "", "creation_timestamp": "2026-05-12T01:21:19.000000Z"}, {"uuid": "de09d939-8adb-47fe-ae5d-1e70b00426a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29202", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-vulnerabilities-cpanel-and-whm-leading-privilege-escalation-patch", "content": "", "creation_timestamp": "2026-05-12T01:21:19.000000Z"}, {"uuid": "897b10f5-7e28-47a9-9fbd-e96400ad3ecc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29201", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-vulnerabilities-cpanel-and-whm-leading-privilege-escalation-patch", "content": "", "creation_timestamp": "2026-05-12T01:21:19.000000Z"}, {"uuid": "7375cf5c-e876-41e6-bb80-1c1a1aa3a7dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29206", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mlrwb25mje2s", "content": "\ud83d\udfe0 CVE-2026-29206 - High (8.1)\n\nInsufficient sanitization of SQL queries in the `sqloptimizer` utility script allows SQL Injectio...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2026-29206/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-05-14T03:54:37.135431Z"}, {"uuid": "d691ee4f-1a91-4a76-9e5f-1d7dc63402a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29204", "type": "seen", "source": "Telegram/teG4DVBc85RVRMJm4el6jDQBtDWo8ajupjsz6y3TMCUVzzM", "content": "", "creation_timestamp": "2026-05-13T11:00:14.000000Z"}, {"uuid": "048b6380-f44c-48b5-a607-07a28104242f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "https://bsky.app/profile/r-blueteamsec.bsky.social/post/3mmefzc6s4g2w", "content": "New Age of Collisions: Reading Arbitrary Files Pre-Auth as root in cPanel (CVE-2026-29205)", "creation_timestamp": "2026-05-21T12:24:32.071695Z"}, {"uuid": "53e4ecac-4e2b-47dc-a76d-56085aeebf99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "Telegram/6zXDSxbXo7EBof6Cd4yE6Ym9T-wdU5pbgKCP0C0zYCxnx9mm", "content": "", "creation_timestamp": "2026-05-19T07:29:55.000000Z"}, {"uuid": "92982f8f-c46b-437c-a216-c4289c068ba1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "https://bsky.app/profile/alexandreborges.bsky.social/post/3mm7hmwsvw22g", "content": "New Age of Collisions: Reading Arbitrary Files Pre-Auth as root in cPanel (CVE-2026-29205):\n\n(blog) slcyber.io/research-cen...\n\n(tool) github.com/assetnote/cp...\n\n#cve #vulnerability #cybersecurity #informationsecurity #authentication", "creation_timestamp": "2026-05-19T13:11:26.260208Z"}, {"uuid": "06c24dbb-006e-4616-b5cf-4ec3967d1965", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-29205", "type": "seen", "source": "https://infosec.exchange/users/alexandreborges/statuses/116601408065180777", "content": "New Age of Collisions: Reading Arbitrary Files Pre-Auth as root in cPanel (CVE-2026-29205):\n(blog) https://slcyber.io/research-center/new-age-of-collisions-reading-arbitrary-files-pre-auth-as-root-in-cpanel-cve-2026-29205\n(tool) https://github.com/assetnote/cpanel2shell-scanner\n#cve #vulnerability #cybersecurity #informationsecurity #authentication", "creation_timestamp": "2026-05-19T13:11:30.918959Z"}, {"uuid": "8b2053dd-7c5f-4c06-8294-61f94abf89f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "https://www.acn.gov.it/portale/w/cpanel-whm-e-wp-squared-poc-pubblico-per-lo-sfruttamento-della-cve-2026-29205", "content": "Aggiornamenti di sicurezza sanano cinque vulnerabilit\u00e0 di gravit\u00e0 \u201calta\u201d, tra cui una con proof of concept (PoC) disponibile, presenti nei software cPanel & WHM e WP Squared, noti pannelli di controllo per l\u2019hosting web.", "creation_timestamp": "2026-05-20T11:20:46.000000Z"}, {"uuid": "59a5672a-5b60-4e33-ac48-24539265cc34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-29205", "type": "seen", "source": "https://bsky.app/profile/cyberhub.blog/post/3mmcdnzac252w", "content": "\ud83d\udccc New Age of Collisions: Pre-Auth Arbitrary File Reading as Root in cPanel (CVE-2026-29205) https://www.cyberhub.blog/article/26233-new-age-of-collisions-pre-auth-arbitrary-file-reading-as-root-in-cpanel-cve-2026-29205", "creation_timestamp": "2026-05-20T16:37:07.067374Z"}, {"uuid": "25184d70-9fe2-45c4-876d-aacda802be73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2026-29206", "type": "seen", "source": "https://www.acn.gov.it/portale/w/cpanel-whm-e-wp-squared-poc-pubblico-per-lo-sfruttamento-della-cve-2026-29205", "content": "", "creation_timestamp": "2026-05-20T06:20:46.000000Z"}, {"uuid": "e01554e5-267b-4114-9733-b10e5aa3cf76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-29205", "type": "seen", "source": "https://t.me/bdufstecru/3184", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0441\u043b\u0443\u0436\u0431\u044b cpdavd \u043f\u0430\u043d\u0435\u043b\u0435\u0439 \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f \u0432\u0435\u0431-\u0445\u043e\u0441\u0442\u0438\u043d\u0433\u043e\u043c cPanel \u0438 WordPress Squared, \u043f\u0430\u043d\u0435\u043b\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f WebHost Manager \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0432\u0435\u0440\u043d\u044b\u043c \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435\u043c \u0438\u043c\u0435\u043d\u0438 \u043f\u0443\u0442\u0438 \u043a \u043a\u0430\u0442\u0430\u043b\u043e\u0433\u0443 \u0441 \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u043d\u044b\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u043e\u043c. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u0447\u0438\u0442\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u044b\u0435 \u0444\u0430\u0439\u043b\u044b\n\nBDU:2026-07107\nCVE-2026-29205\n\n\u0418\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f:\nhttps://support.cpanel.net/hc/en-us/articles/40437020299927-Security-CVE-2026-29205-cPanel-WHM-WP2-Security-Update-May-13-2026\n\n\u041a\u043e\u043c\u043f\u0435\u043d\u0441\u0438\u0440\u0443\u044e\u0449\u0438\u0435 \u043c\u0435\u0440\u044b:\n- \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 \u0441\u043b\u0443\u0436\u0431\u044b CalDAV (cpdavd);\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u043f\u043e\u0440\u0442\u0430\u043c 2079 \u0438 2080;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0440\u0435\u0434\u0441\u0442\u0432 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u044d\u043a\u0440\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0434\u043b\u044f \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u0438 \u0443\u0434\u0430\u043b\u0451\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u043c\u0443 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c\u0443 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044e;\n- \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0435\u0442\u0438 \u0441 \u0446\u0435\u043b\u044c\u044e \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u044f \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u043c\u0443 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c\u0443 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044e \u0438\u0437 \u0434\u0440\u0443\u0433\u0438\u0445 \u043f\u043e\u0434\u0441\u0435\u0442\u0435\u0439;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f \u0438 \u043f\u0440\u0435\u0434\u043e\u0442\u0432\u0440\u0430\u0449\u0435\u043d\u0438\u044f \u0432\u0442\u043e\u0440\u0436\u0435\u043d\u0438\u0439 \u0434\u043b\u044f \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u044f (\u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f, \u0440\u0435\u0433\u0438\u0441\u0442\u0440\u0430\u0446\u0438\u0438) \u0438 \u0440\u0435\u0430\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u043d\u0430 \u043f\u043e\u043f\u044b\u0442\u043a\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438;\n- \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0445 \u0447\u0430\u0441\u0442\u043d\u044b\u0445 \u0441\u0435\u0442\u0435\u0439 \u0434\u043b\u044f \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e\u0433\u043e \u0434\u043e\u0441\u0442\u0443\u043f\u0430 (VPN);\n- \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u043c\u0443 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u043c\u0443 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044e \u0438\u0437 \u0432\u043d\u0435\u0448\u043d\u0438\u0445 \u0441\u0435\u0442\u0435\u0439 (\u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442).", "creation_timestamp": "2026-05-22T13:22:59.000000Z"}]}