Dear customers,
We want to give you advance notice of an upcoming security update affecting cPanel & WHM servers.
What's happening: cPanel will release a security patch on Wednesday, May 20 at 8:00 AM EST addressing multiple vulnerabilities, including some rated High severity. There are currently no known exploits in the wild, and technical details will only be published once the patch is live.
Are you affected?
If your server runs any of the following cPanel versions, this patch applies to you: 86, 94, 102, 110, 118, 124, 126, 130, 132, 134, 136 (including CL6 and WP2 variants).
What we're doing:
We will be applying this patch across managed servers as soon as it becomes available on May 20. For servers with automatic updates enabled, the patch will roll out automatically.
What you may need to do:
-
If you manage your own server or have automatic updates disabled, run
/scripts/upcp--force once the patch is available to update manually. -
If your server runs CloudLinux 6, set your update tier to the
cl6110branch before updating. -
If your setup requires a maintenance window, we recommend scheduling one around May 20.
We'll send a follow-up once the patch is live with full details and confirmed patched version numbers.
If you have any questions in the meantime, don't hesitate to reach out.
Thank you,
Yours UndergroundPrivate.com
Monday, May 18, 2026
