CVE-2026-54420: LiteSpeed cPanel Plugin Root Escalation
🟠 High | Source: The Hacker News CISA has added CVE-2026-54420, a high-severity privilege escalation flaw in the LiteSpeed cPanel Plugin, to its Known Exploited Vulnerabilities catalogue. The vulnerability carries a CVSS score of 8.5 and allows attackers to escalate privileges to root level on affected systems. US federal agencies must apply patches by 18 June 2026, but active exploitation means all organisations running this plugin should treat this as urgent. ...