Identified
We have restored access to many customers in our non-managed environments in relation to the cPanel vulnerability. We are taking extra precautions to ensure a secure recovery, which is extending resolution and support wait times for impacted customers. Thank you for your patience.
Posted May 11th, 2026 9:14 pm EST 
Identified
Our teams are actively restoring services impacted by the cPanel vulnerability. We are taking extra precautions to ensure a secure recovery, which is extending resolution and support wait times. Thank you for your patience
Posted May 7th, 2026 12:50 pm EST
Identified
We continue to restore access to affected servers. Given the nature of this vulnerability, the process is complex, and our immediate priority is to secure data and prevent further impact, which is why certain access (Server/WHM/cPanel) has been temporarily restricted. We understand the criticality of your services and the impact this situation may be causing. This incident is related to a recently identified security vulnerability in cPanel & WHM login.
Posted May 6th, 2026 12:34 pm EST
Identified
We continue to restore access to affected servers. Given the nature of this vulnerability, the process is complex, and our immediate priority is to secure data and prevent further impact, which is why certain access (Server/WHM/cPanel) has been temporarily restricted. We understand the criticality of your services and the impact this situation may be causing. This incident is related to a recently identified security vulnerability in cPanel & WHM login.
Posted May 5th, 2026 7:03 pm EST
Identified
We have successfully restored access to some of the affected servers and will continue to do so. Given the nature of this vulnerability, the process is complex, and our immediate priority is to secure data and prevent further impact, which is why certain access (Server/WHM/cPanel) has been temporarily restricted.
We understand the criticality of your services and the impact this situation may be causing. This incident is related to a recently identified security vulnerability in cPanel & WHM login.
Posted May 4th, 2026 6:19 pm EST
Identified
On April 30th, a critical security vulnerability affecting cPanel & WHM login authentication was identified by the vendor. This issue impacts all currently supported versions of cPanel and may expose servers to unauthorized access if left unpatched.
Where possible we have patched, however a small subset of customers have configurations active that prevent us from patching. We have secured these servers; however, this will restrict your log in access to cPanel and WHM on unpatched VPS Servers. More information on how you can log in can be found in this knowledge article: https://www.bluehost.com/help/article/cpanel-centos6-vulnerability
For guidance on how to update your WHM version, please refer to the official documentation: https://docs.cpanel.net/whm/cpanel/upgrade-to-latest-version/
IMPORTANT NOTE: Customers running older / unsupported cPanel versions are strongly advised to upgrade to a supported build immediately.
Posted May 3rd, 2026 8:37 pm EST
Affected Services
- Hosting