🥳靠谱VPS推荐(默认带aff） - VPS仓/古博

路由：RIPE RIS rrc00 collector 的 MRT RIB 全表 —— 每个 peer 视角看到的 「去往目标前缀的去程 AS_PATH」。 地理 / 运营商：本地 IP 地理库（ipdb），按城市 / 省归类。 存活：Shodan 历史快照里开放服务的 host，再做 ICMP / TCP 二次确认（仅对已知开放 host， 扫描量极小）。

只看 AS_PATH：path 里有哪些 ASN，以及它们的顺序 / 相邻关系 （1299 23764 4809 与 1299 4809 不同）。 入库口径 = (AS_PATH 含焦点 ASN) ∩ (落在焦点城市)。 不做任何「线路质量」评分：CN2 vs GIA 等产品档从境外 collector 的回程 BGP 根本分不出 （GIA ⊂ CN2，同走 AS4809）。 「最优路径 ★」「更大 / 更小段」等仅基于数据库已采集的前缀，并非全球路由表，可能不全。

# 如需云服务，使用如下命令：
Remove-Item "C:\Program Files (x86)\Kingsoft\WPS Office\12.8.2.18205\office6\cfgs\oem.ini" -Force

漏洞核心为 Client Area 授权校验不足。攻击者在已登录 WHMCS 账号的前提下，可能在特定条件下越权访问或操作不属于自己的服务资源。社区讨论中将其描述为通过修改 addonid 等参数触发的越权问题，但官方公告未披露具体参数级利用细节。

WHMCS 9.x < 9.0.4 WHMCS 8.x < 8.13.3 WHMCS 7.4 及之后的 7.x 版本

WHMCS 9.0.4 WHMCS 8.13.3

We are writing to inform you of a critical security vulnerability, CVE-2026-41940, affecting cPanel & WHM — the web hosting control panel software used to manage websites and servers. This vulnerability has a CVSS score of 9.8 (Critical) and is being actively exploited in the wild. We strongly urge you to take action immediately.


━━ WHAT IS THE VULNERABILITY? ━━

CVE-2026-41940 is an authentication bypass vulnerability caused by a CRLF (Carriage Return Line Feed) injection flaw in the cPanel login and session-handling process. It allows unauthenticated remote attackers to bypass the login process entirely and gain full administrative access to the cPanel or WHM control panel — without any username or password.

Successful exploitation could give an attacker complete control over:
• Your cPanel host system and its configuration
• All databases hosted on the server
• All websites and accounts managed under the panel

The vulnerability affects all cPanel & WHM versions after v11.40, as well as v136.1.7 of WP Squared (a managed WordPress hosting platform built on cPanel).


━━ IS THIS BEING ACTIVELY EXPLOITED? ━━

Yes. Active exploitation has been observed in the wild since at least 23 February 2026 — several weeks before the public disclosure. A proof-of-concept exploit was published by security firm watchTowr on 29 April 2026, which means exploitation attempts are now expected to increase significantly. Security researchers have observed nearly 4,000 attack attempts targeting exposed cPanel instances, spanning multiple industries and countries.


━━ WHAT SHOULD YOU DO? ━━

1. Update immediately
Apply the security patch released by cPanel/WebPros on 28 April 2026. Verify your cPanel build version after updating and restart the cPanel service (cpsrvd).

2. Block access at the firewall (if you cannot patch immediately)
Block inbound traffic on the following ports:
*2083 (cPanel HTTPS)
*2087 (WHM HTTPS)
*2095 (Webmail HTTP)
*2096 (Webmail HTTPS)

3. Check for signs of compromise
cPanel has released a detection script to help identify known indicators of compromise. We recommend running this against any affected systems. Additionally:
* Review WHM access logs for any unauthorised activity
*Inspect session files for anomalies
*Purge existing sessions and force password resets for root and WHM users
*Check for any persistence mechanisms (new admin accounts, changed configurations, etc.)

4. Contact your hosting provider
If your cPanel environment is managed by a hosting provider, contact them to confirm that the patch has been applied to your server.


━━ FURTHER RESOURCES ━━

• cPanel Security Advisory: https://support.cpanel.net
• Rapid7 Technical Analysis: https://www.rapid7.com/blog/post/etr-cve-2026-41940-cpanel-whm-authentication-bypass/
• NVD Entry: https://nvd.nist.gov/vuln/detail/CVE-2026-41940

If you have any questions or need assistance applying this patch, please do not hesitate to contact our support team.

We take the security of your infrastructure seriously and will continue to monitor this situation and provide updates as new information becomes available.