cPanel Releases Security Updates to Address Vulnerabilities in cPanel and WHM

cPanel has released security updates to address three vulnerabilities in cPanel and Web Host Manager (WHM) that could lead to privilege escalation, code execution, and denial-of-service attacks. One of the flaws, identified as CVE-2026-29201 with a CVSS score of 4.3, involves insufficient input validation in the "feature::LOADFEATUREFILE" adminbin call related to feature file names. The updates were issued to mitigate these risks, though no specific release date or affected version range was disclosed. The vulnerabilities were publicly reported by the source without detailing exploitation in the wild. No additional CVEs or technical specifics for the other two flaws were provided in the available content.