CVE-2026-48172: LiteSpeed cPanel Plugin Privilege Escalation Vulnerability.

LiteSpeed cPanel Plugin Privilege Escalation Vulnerability. LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user account to execute arbitrary scripts with root privileges.

• CISA KEV-listed (remediation due 2026-05-29)
• EPSS 8.0% (92.2% percentile)

Browse the CVE database

Read the full analysis on IntelFusions