CVE-2026-48172 in LiteSpeed cPanel Plugin Enables Root Privilege Escalation
Source: Rescana
Published:
<p>CVE-2026-48172 is a critical privilege escalation vulnerability (CVSS 10.0) affecting the LiteSpeed User-End cPanel Plugin in versions 2.3 through 2.4.4. This flaw allows any authenticated cPanel user—including attackers leveraging compromised accounts—to execute arbitrary scripts as the root use