CVE-2026-48172

⚠ KEVEPSS 8.0%

LiteSpeed cPanel Plugin Privilege Escalation Vulnerability

Added to CISA KEV: 5/26/2026

Description

LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges.

Affected packages (0)

No package mapping in OSV.