https://invaders.ie/resources/blog/threat-hunting-and-intel/cve-2026-41940-cpanel-whm-control-plane-takeover Invaders Security en 2026-04-30T08:08:51.472Z CVE-2026-41940 turns exposed cPanel and WHM servers into control-plane takeover targets CVE-2026-41940, cPanel authentication bypass, WHM auth bypass, cPanel exposed hosting risk, cPanel control plane takeover, cpsrvd CRLF injection https://invaders.ie/resources/blog/cloud-and-application-security/cve-2026-42208-litellm-pre-auth-sqli-secrets-exposure Invaders Security en 2026-04-29T08:06:53.255Z CVE-2026-42208 turns exposed LiteLLM gateways into a secrets exposure risk CVE-2026-42208, LiteLLM SQL injection, LiteLLM pre-auth SQLi, AI gateway secrets exposure, LiteLLM active exploitation, LLM proxy API key risk