THREATOPS
THREAT OPSCVEs › CVE-2026-48172

CVE-2026-48172 — LiteSpeed cPanel Plugin Privilege Escalation Vulnerability

CISA KEVExploited: confirmedLiteSpeed

LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges.

Vulnerability details

Related reporting