{"id":241,"date":"2026-05-25T03:15:23","date_gmt":"2026-05-25T00:15:23","guid":{"rendered":"https:\/\/dehost.com.tr\/blog\/?p=241"},"modified":"2026-05-25T03:15:23","modified_gmt":"2026-05-25T00:15:23","slug":"cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi","status":"publish","type":"post","link":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/","title":{"rendered":"cPanel &#038; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131"},"content":{"rendered":"<p>cPanel, 28 Nisan 2026 tarihinde\u00a0<strong>CVE-2026-41940<\/strong>\u00a0koduyla takip edilen kritik bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 i\u00e7in g\u00fcvenlik g\u00fcncellemesi yay\u0131nlad\u0131. Bu a\u00e7\u0131k, cPanel &amp; WHM yaz\u0131l\u0131m\u0131nda\u00a0<strong>kimlik do\u011frulama atlatma<\/strong>\u00a0riskine neden olmakta ve\u00a0<strong>cPanel DNSOnly dahil olmak \u00fczere 11.40 sonras\u0131 t\u00fcm s\u00fcr\u00fcmleri<\/strong>\u00a0etkileyebilmektedir.<\/p>\n<h2>Ne Oldu?<\/h2>\n<p>cPanel taraf\u0131ndan yay\u0131mlanan g\u00fcvenlik duyurusuna g\u00f6re, cPanel yaz\u0131l\u0131m\u0131nda sald\u0131rganlar\u0131n kimlik do\u011frulama mekanizmas\u0131n\u0131 atlatmas\u0131na yol a\u00e7abilecek bir g\u00fcvenlik sorunu tespit edildi. Bu t\u00fcr a\u00e7\u0131klar, \u00f6zellikle WHM\/cPanel aray\u00fczleri internete a\u00e7\u0131k olan sunucularda ciddi risk olu\u015fturabilir.<\/p>\n<p>cPanel, bu a\u00e7\u0131k i\u00e7in \u00e7e\u015fitli cPanel &amp; WHM s\u00fcr\u00fcmlerine yama yay\u0131nlad\u0131 ve sunucular\u0131n m\u00fcmk\u00fcn olan en k\u0131sa s\u00fcrede g\u00fcncellenmesini \u00f6nerdi. Duyuru ilk olarak 28 Nisan 2026 tarihinde yay\u0131mland\u0131; 29 Nisan 2026 tarihinde gerekli aksiyonlar g\u00fcncellendi ve tespit beti\u011fi eklendi.<\/p>\n<h2><strong>Etkilenen Sistemler<\/strong><\/h2>\n<p>Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131, cPanel taraf\u0131ndan yap\u0131lan a\u00e7\u0131klamaya g\u00f6re\u00a0<strong>11.40 sonras\u0131 cPanel s\u00fcr\u00fcmlerini<\/strong>\u00a0etkileyebilmektedir. cPanel DNSOnly kurulumlar\u0131 da kapsam dahilindedir.<\/p>\n<p>\u00d6zellikle a\u015fa\u011f\u0131daki durumdaki sunucular daha dikkatli kontrol edilmelidir:<\/p>\n<ul>\n<li>cPanel &amp; WHM panel portlar\u0131 internete a\u00e7\u0131k olan sunucular<\/li>\n<li>Otomatik cPanel g\u00fcncellemeleri kapal\u0131 olan sistemler<\/li>\n<li>Belirli bir cPanel s\u00fcr\u00fcm\u00fcne sabitlenmi\u015f sistemler<\/li>\n<li>Destek d\u0131\u015f\u0131 veya eski cPanel s\u00fcr\u00fcm\u00fc kullanan sunucular<\/li>\n<li>DNSOnly \u00e7al\u0131\u015fan cPanel sunucular\u0131<\/li>\n<\/ul>\n<h2>Yay\u0131nlanan G\u00fcvenli S\u00fcr\u00fcmler<\/h2>\n<p>cPanel, a\u015fa\u011f\u0131daki cPanel &amp; WHM s\u00fcr\u00fcmleri i\u00e7in g\u00fcvenlik yamas\u0131 yay\u0131nlad\u0131\u011f\u0131n\u0131 duyurdu:<\/p>\n<ul>\n<li>11.86.0.41<\/li>\n<li>11.110.0.97<\/li>\n<li>11.118.0.63<\/li>\n<li>11.126.0.54<\/li>\n<li>11.130.0.19<\/li>\n<li>11.132.0.29<\/li>\n<li>11.134.0.20<\/li>\n<li>11.136.0.5<\/li>\n<\/ul>\n<p>WP Squared i\u00e7in yay\u0131nlanan g\u00fcvenli s\u00fcr\u00fcm:<\/p>\n<ul>\n<li>136.1.7<\/li>\n<\/ul>\n<h2>Sunucu Y\u00f6neticileri Ne Yapmal\u0131?<\/h2>\n<p>cPanel kullanan sunucularda g\u00fcvenlik g\u00fcncellemesi vakit kaybetmeden uygulanmal\u0131d\u0131r. cPanel\u2019in \u00f6nerdi\u011fi g\u00fcncelleme komutu \u015fu \u015fekildedir:<\/p>\n<p><code>\/scripts\/upcp --force<\/code><\/p>\n<p>G\u00fcncelleme tamamland\u0131ktan sonra cPanel s\u00fcr\u00fcm\u00fc kontrol edilmeli ve <strong>cpsrvd<\/strong> servisi yeniden ba\u015flat\u0131lmal\u0131d\u0131r:<\/p>\n<pre><code>\/usr\/local\/cpanel\/cpanel -V<\/code><\/pre>\n<pre><code>\/scripts\/restartsrv_cpsrvd<\/code><\/pre>\n<p>E\u011fer otomatik g\u00fcncellemeler kapal\u0131ysa veya sunucu belirli bir s\u00fcr\u00fcme sabitlendiyse, sistem otomatik olarak g\u00fcncellenmeyebilir. Bu nedenle bu sunucular\u0131n manuel olarak kontrol edilmesi gerekir.<\/p>\n<h2>G\u00fcncelleme Yap\u0131lam\u0131yorsa Ge\u00e7ici \u00d6nlem<\/h2>\n<p>G\u00fcncellemenin hemen uygulanamad\u0131\u011f\u0131 durumlarda cPanel, ge\u00e7ici \u00f6nlem olarak panel portlar\u0131na gelen trafi\u011fin g\u00fcvenlik duvar\u0131 \u00fczerinden engellenmesini \u00f6nermektedir.<\/p>\n<p>Engellenmesi \u00f6nerilen portlar:<\/p>\n<ul>\n<li><strong>2083<\/strong><\/li>\n<li><strong>2087<\/strong><\/li>\n<li><strong>2095<\/strong><\/li>\n<li><strong>2096<\/strong><\/li>\n<\/ul>\n<p>Alternatif olarak\u00a0<code>cpsrvd<\/code>\u00a0ve\u00a0<code>cpdavd<\/code>\u00a0servisleri ge\u00e7ici olarak durdurulabilir. Ancak bu i\u015flem panel eri\u015fimini ve ilgili servisleri etkileyebilece\u011fi i\u00e7in dikkatli uygulanmal\u0131d\u0131r.<\/p>\n<pre><code>whmapi1 configureservice service=cpsrvd enabled=0 monitored=0 &amp;&amp; whmapi1 configureservice service=cpdavd enabled=0 monitored=0 &amp;&amp; \/scripts\/restartsrv_cpsrvd --stop &amp;&amp; \/scripts\/restartsrv_cpdavd --stop<\/code><\/pre>\n<h2>\u0130stismar Belirtisi Nas\u0131l Kontrol Edilir?<\/h2>\n<p>cPanel, olas\u0131 istismar belirtilerini kontrol etmek i\u00e7in bir tespit beti\u011fi de payla\u015fm\u0131\u015ft\u0131r. Bu betik,\u00a0<code>\/var\/cpanel\/sessions<\/code>\u00a0dizini alt\u0131nda \u015f\u00fcpheli oturum dosyalar\u0131n\u0131 kontrol eder. \u00d6zellikle\u00a0<code>token_denied<\/code>,\u00a0<code>cp_security_token<\/code>,\u00a0<code>badpass<\/code>,\u00a0<code>tfa_verified<\/code>\u00a0gibi g\u00f6stergeler istismar \u015f\u00fcphesi a\u00e7\u0131s\u0131ndan incelenmektedir.<\/p>\n<p>Betik \u00e7al\u0131\u015ft\u0131r\u0131ld\u0131\u011f\u0131nda herhangi bir g\u00f6sterge bulunmazsa sistem \u201cNo indicators of compromise found\u201d \u00e7\u0131kt\u0131s\u0131 verebilir. Ancak istismar belirtisi bulunursa; oturumlar\u0131n temizlenmesi, root ve WHM kullan\u0131c\u0131 \u015fifrelerinin s\u0131f\u0131rlanmas\u0131,\u00a0<code>\/var\/log\/wtmp<\/code>\u00a0ve WHM eri\u015fim loglar\u0131n\u0131n incelenmesi, cron, SSH anahtarlar\u0131 ve olas\u0131 backdoor mekanizmalar\u0131n\u0131n kontrol edilmesi \u00f6nerilmektedir.<\/p>\n<h2>Acil Al\u0131nmas\u0131 Gereken \u00d6nlemler<\/h2>\n<ol start=\"1\">\n<li>cPanel sunucunuzu derhal g\u00fcvenli s\u00fcr\u00fcme g\u00fcncelleyin.<\/li>\n<li>G\u00fcncelleme sonras\u0131 cPanel s\u00fcr\u00fcm\u00fcn\u00fc do\u011frulay\u0131n.<\/li>\n<li><code>cpsrvd<\/code>\u00a0servisini yeniden ba\u015flat\u0131n.<\/li>\n<li>Otomatik g\u00fcncellemeleri kapal\u0131 olan sunucular\u0131 manuel kontrol edin.<\/li>\n<li>Panel portlar\u0131n\u0131 yaln\u0131zca g\u00fcvenilir IP adreslerine a\u00e7\u0131n.<\/li>\n<li>cPanel\u2019in tespit beti\u011fi ile oturum dosyalar\u0131n\u0131 kontrol edin.<\/li>\n<li>\u015e\u00fcpheli bulgu varsa t\u00fcm WHM\/root \u015fifrelerini de\u011fi\u015ftirin.<\/li>\n<li>WHM eri\u015fim loglar\u0131n\u0131 ve sistem giri\u015f kay\u0131tlar\u0131n\u0131 inceleyin.<\/li>\n<li>Yetkisiz cron, SSH key veya web shell\/backdoor olup olmad\u0131\u011f\u0131n\u0131 kontrol edin.<\/li>\n<li>Destek d\u0131\u015f\u0131 cPanel s\u00fcr\u00fcmlerinden m\u00fcmk\u00fcn olan en k\u0131sa s\u00fcrede \u00e7\u0131k\u0131n.<\/li>\n<\/ol>\n<h2>DEHOST Olarak \u00d6nerimiz<\/h2>\n<p>cPanel &amp; WHM panel portlar\u0131n\u0131n do\u011frudan t\u00fcm internete a\u00e7\u0131k b\u0131rak\u0131lmas\u0131, bu tarz kritik g\u00fcvenlik a\u00e7\u0131klar\u0131nda sald\u0131r\u0131 y\u00fczeyini ciddi \u015fekilde art\u0131rmaktad\u0131r. Bu nedenle WHM\/cPanel eri\u015fimlerinin m\u00fcmk\u00fcnse yaln\u0131zca belirli IP adreslerine a\u00e7\u0131lmas\u0131, VPN veya g\u00fcvenlik duvar\u0131 kurallar\u0131yla s\u0131n\u0131rland\u0131r\u0131lmas\u0131 \u00f6nerilir.<\/p>\n<p>Sunucu y\u00f6neticilerinin bu g\u00fcncellemeyi s\u0131radan bir versiyon y\u00fckseltmesi olarak de\u011fil,\u00a0<strong>kritik g\u00fcvenlik m\u00fcdahalesi<\/strong>\u00a0olarak de\u011ferlendirmesi gerekir. \u00d6zellikle \u00e7ok say\u0131da hosting hesab\u0131 bar\u0131nd\u0131ran sunucularda g\u00fcncelleme, log kontrol\u00fc ve oturum incelemesi geciktirilmemelidir.<\/p>\n<p>Bu olay, kontrol paneli yaz\u0131l\u0131mlar\u0131nda otomatik g\u00fcncellemelerin, eri\u015fim k\u0131s\u0131tlamalar\u0131n\u0131n ve d\u00fczenli g\u00fcvenlik denetimlerinin ne kadar \u00f6nemli oldu\u011funu bir kez daha g\u00f6stermektedir. cPanel kullanan t\u00fcm sistemlerde g\u00fcncelleme ve kontrol i\u015flemlerinin vakit kaybetmeden yap\u0131lmas\u0131 \u00f6nerilir.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>cPanel, 28 Nisan 2026 tarihinde\u00a0CVE-2026-41940\u00a0koduyla takip edilen kritik bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 i\u00e7in g\u00fcvenlik g\u00fcncellemesi yay\u0131nlad\u0131. Bu a\u00e7\u0131k, cPanel &amp; WHM yaz\u0131l\u0131m\u0131nda\u00a0kimlik do\u011frulama atlatma\u00a0riskine neden olmakta ve\u00a0cPanel DNSOnly dahil olmak \u00fczere 11.40 sonras\u0131 t\u00fcm s\u00fcr\u00fcmleri\u00a0etkileyebilmektedir. Ne Oldu? cPanel taraf\u0131ndan yay\u0131mlanan g\u00fcvenlik duyurusuna g\u00f6re, cPanel yaz\u0131l\u0131m\u0131nda sald\u0131rganlar\u0131n kimlik do\u011frulama mekanizmas\u0131n\u0131 atlatmas\u0131na yol a\u00e7abilecek bir g\u00fcvenlik sorunu tespit<\/p>\n","protected":false},"author":1,"featured_media":242,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[41,2],"tags":[46,42,47,45,50,43,48,49,44],"class_list":["post-241","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-guvenlik-aciklari","category-linux-sistemler-hakkinda-bilgiler","tag-cpanel-authentication-bypass","tag-cpanel-guvenlik-acigi","tag-cpanel-update","tag-cpanel-whm-guvenlik-guncellemesi","tag-cpanel-zaafiyeti","tag-cve-2026-41940","tag-hosting-guvenligi","tag-server-security","tag-whm-guvenlik-acigi"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.7 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>cPanel &amp; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131 - Dehost Blog<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/\" \/>\n<meta property=\"og:locale\" content=\"tr_TR\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"cPanel &amp; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131 - Dehost Blog\" \/>\n<meta property=\"og:description\" content=\"cPanel, 28 Nisan 2026 tarihinde\u00a0CVE-2026-41940\u00a0koduyla takip edilen kritik bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 i\u00e7in g\u00fcvenlik g\u00fcncellemesi yay\u0131nlad\u0131. Bu a\u00e7\u0131k, cPanel &amp; WHM yaz\u0131l\u0131m\u0131nda\u00a0kimlik do\u011frulama atlatma\u00a0riskine neden olmakta ve\u00a0cPanel DNSOnly dahil olmak \u00fczere 11.40 sonras\u0131 t\u00fcm s\u00fcr\u00fcmleri\u00a0etkileyebilmektedir. Ne Oldu? cPanel taraf\u0131ndan yay\u0131mlanan g\u00fcvenlik duyurusuna g\u00f6re, cPanel yaz\u0131l\u0131m\u0131nda sald\u0131rganlar\u0131n kimlik do\u011frulama mekanizmas\u0131n\u0131 atlatmas\u0131na yol a\u00e7abilecek bir g\u00fcvenlik sorunu tespit\" \/>\n<meta property=\"og:url\" content=\"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/\" \/>\n<meta property=\"og:site_name\" content=\"Dehost Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/profile.php?id=100085722701227\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/profile.php?id=100085722701227\" \/>\n<meta property=\"article:published_time\" content=\"2026-05-25T00:15:23+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"1280\" \/>\n\t<meta property=\"og:image:height\" content=\"720\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/webp\" \/>\n<meta name=\"author\" content=\"Dehost\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@dehostcomtr\" \/>\n<meta name=\"twitter:site\" content=\"@dehostcomtr\" \/>\n<meta name=\"twitter:label1\" content=\"Yazan:\" \/>\n\t<meta name=\"twitter:data1\" content=\"Dehost\" \/>\n\t<meta name=\"twitter:label2\" content=\"Tahmini okuma s\u00fcresi\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 dakika\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/\"},\"author\":{\"name\":\"Dehost\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#\\\/schema\\\/person\\\/de1252abb4adf4bd157e3e9f2134649a\"},\"headline\":\"cPanel &#038; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131\",\"datePublished\":\"2026-05-25T00:15:23+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/\"},\"wordCount\":791,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp\",\"keywords\":[\"cpanel authentication bypass\",\"cpanel g\u00fcvenlik a\u00e7\u0131\u011f\u0131\",\"cpanel update\",\"cpanel whm g\u00fcvenlik g\u00fcncellemesi\",\"cpanel zaafiyeti\",\"cve-2026-41940\",\"hosting g\u00fcvenli\u011fi\",\"sunucu g\u00fcvenli\u011fi\",\"whm g\u00fcvenlik a\u00e7\u0131\u011f\u0131\"],\"articleSection\":[\"G\u00fcvenlik A\u00e7\u0131klar\u0131\",\"Linux\"],\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/\",\"url\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/\",\"name\":\"cPanel & WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131 - Dehost Blog\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp\",\"datePublished\":\"2026-05-25T00:15:23+00:00\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#breadcrumb\"},\"inLanguage\":\"tr\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#primaryimage\",\"url\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp\",\"contentUrl\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp\",\"width\":1280,\"height\":720},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Anasayfa\",\"item\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"cPanel &#038; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/\",\"name\":\"DeHost Blog\",\"description\":\"Y\u00fcksek Performansl\u0131 Hosting, VDS ve Sunucu Rehberi\",\"publisher\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#organization\"},\"alternateName\":\"DeHost\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"tr\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#organization\",\"name\":\"DeHost\u00ae \u0130nternet ve Bili\u015fim Teknolojileri Sanayi Ticaret Limited \u015eirketi\",\"url\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/Profil1-scaled.png\",\"contentUrl\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/wp-content\\\/uploads\\\/2026\\\/05\\\/Profil1-scaled.png\",\"width\":2560,\"height\":2560,\"caption\":\"DeHost\u00ae \u0130nternet ve Bili\u015fim Teknolojileri Sanayi Ticaret Limited \u015eirketi\"},\"image\":{\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/profile.php?id=100085722701227\",\"https:\\\/\\\/x.com\\\/dehostcomtr\",\"https:\\\/\\\/www.instagram.com\\\/dehosthosting\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/#\\\/schema\\\/person\\\/de1252abb4adf4bd157e3e9f2134649a\",\"name\":\"Dehost\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"tr\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/188cd3dda87f9f976156cad8b97760805d622274dc8a9c620404b984d6c3d287?s=96&d=mm&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/188cd3dda87f9f976156cad8b97760805d622274dc8a9c620404b984d6c3d287?s=96&d=mm&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/188cd3dda87f9f976156cad8b97760805d622274dc8a9c620404b984d6c3d287?s=96&d=mm&r=g\",\"caption\":\"Dehost\"},\"description\":\"Kuruldu\u011fu g\u00fcnden beri misyonuna ba\u011fl\u0131 kalan DeHost, bu ba\u011fl\u0131l\u0131\u011f\u0131n\u0131 t\u00fcm faaliyetlerine yans\u0131t\u0131r. Prensip edindi\u011fi ilkelerden ve ilk \u00f6ncelik olarak kabul etti\u011fi de\u011ferlerden g\u00fc\u00e7 alan firmam\u0131z, hizmet anlay\u0131\u015f\u0131na bu \u00e7er\u00e7evede y\u00f6n verir. \u00c7al\u0131\u015fmalar\u0131n\u0131 kurumsal vizyonu \u00e7er\u00e7evesinde s\u00fcrd\u00fcren firmam\u0131z, sekt\u00f6r\u00fcnde varl\u0131k g\u00f6stermeye ba\u015flad\u0131\u011f\u0131 g\u00fcnden bu yana bunun d\u0131\u015f\u0131na \u00e7\u0131kmam\u0131\u015ft\u0131r.\",\"sameAs\":[\"https:\\\/\\\/dehost.com.tr\\\/\",\"https:\\\/\\\/www.facebook.com\\\/profile.php?id=100085722701227\",\"https:\\\/\\\/www.instagram.com\\\/dehosthosting\",\"https:\\\/\\\/www.youtube.com\\\/@dehostcompany\"],\"url\":\"https:\\\/\\\/dehost.com.tr\\\/blog\\\/author\\\/info_hhchjxlm\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"cPanel & WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131 - Dehost Blog","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/","og_locale":"tr_TR","og_type":"article","og_title":"cPanel & WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131 - Dehost Blog","og_description":"cPanel, 28 Nisan 2026 tarihinde\u00a0CVE-2026-41940\u00a0koduyla takip edilen kritik bir g\u00fcvenlik a\u00e7\u0131\u011f\u0131 i\u00e7in g\u00fcvenlik g\u00fcncellemesi yay\u0131nlad\u0131. Bu a\u00e7\u0131k, cPanel &amp; WHM yaz\u0131l\u0131m\u0131nda\u00a0kimlik do\u011frulama atlatma\u00a0riskine neden olmakta ve\u00a0cPanel DNSOnly dahil olmak \u00fczere 11.40 sonras\u0131 t\u00fcm s\u00fcr\u00fcmleri\u00a0etkileyebilmektedir. Ne Oldu? cPanel taraf\u0131ndan yay\u0131mlanan g\u00fcvenlik duyurusuna g\u00f6re, cPanel yaz\u0131l\u0131m\u0131nda sald\u0131rganlar\u0131n kimlik do\u011frulama mekanizmas\u0131n\u0131 atlatmas\u0131na yol a\u00e7abilecek bir g\u00fcvenlik sorunu tespit","og_url":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/","og_site_name":"Dehost Blog","article_publisher":"https:\/\/www.facebook.com\/profile.php?id=100085722701227","article_author":"https:\/\/www.facebook.com\/profile.php?id=100085722701227","article_published_time":"2026-05-25T00:15:23+00:00","og_image":[{"width":1280,"height":720,"url":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp","type":"image\/webp"}],"author":"Dehost","twitter_card":"summary_large_image","twitter_creator":"@dehostcomtr","twitter_site":"@dehostcomtr","twitter_misc":{"Yazan:":"Dehost","Tahmini okuma s\u00fcresi":"4 dakika"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#article","isPartOf":{"@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/"},"author":{"name":"Dehost","@id":"https:\/\/dehost.com.tr\/blog\/#\/schema\/person\/de1252abb4adf4bd157e3e9f2134649a"},"headline":"cPanel &#038; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131","datePublished":"2026-05-25T00:15:23+00:00","mainEntityOfPage":{"@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/"},"wordCount":791,"commentCount":0,"publisher":{"@id":"https:\/\/dehost.com.tr\/blog\/#organization"},"image":{"@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#primaryimage"},"thumbnailUrl":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp","keywords":["cpanel authentication bypass","cpanel g\u00fcvenlik a\u00e7\u0131\u011f\u0131","cpanel update","cpanel whm g\u00fcvenlik g\u00fcncellemesi","cpanel zaafiyeti","cve-2026-41940","hosting g\u00fcvenli\u011fi","sunucu g\u00fcvenli\u011fi","whm g\u00fcvenlik a\u00e7\u0131\u011f\u0131"],"articleSection":["G\u00fcvenlik A\u00e7\u0131klar\u0131","Linux"],"inLanguage":"tr","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/","url":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/","name":"cPanel & WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131 - Dehost Blog","isPartOf":{"@id":"https:\/\/dehost.com.tr\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#primaryimage"},"image":{"@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#primaryimage"},"thumbnailUrl":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp","datePublished":"2026-05-25T00:15:23+00:00","breadcrumb":{"@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#breadcrumb"},"inLanguage":"tr","potentialAction":[{"@type":"ReadAction","target":["https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/"]}]},{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#primaryimage","url":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp","contentUrl":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/cpanel-yazilimindaki-kritik-guvenlik-acigi-milyonlarca-siteyi-tehdit-ediyor.webp","width":1280,"height":720},{"@type":"BreadcrumbList","@id":"https:\/\/dehost.com.tr\/blog\/cpanel-whm-guvenlik-riski-cve-2026-41940-kimlik-dogrulama-atlatma-acigi\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Anasayfa","item":"https:\/\/dehost.com.tr\/blog\/"},{"@type":"ListItem","position":2,"name":"cPanel &#038; WHM G\u00fcvenlik Riski: CVE-2026-41940 Kimlik Do\u011frulama Atlatma A\u00e7\u0131\u011f\u0131"}]},{"@type":"WebSite","@id":"https:\/\/dehost.com.tr\/blog\/#website","url":"https:\/\/dehost.com.tr\/blog\/","name":"DeHost Blog","description":"Y\u00fcksek Performansl\u0131 Hosting, VDS ve Sunucu Rehberi","publisher":{"@id":"https:\/\/dehost.com.tr\/blog\/#organization"},"alternateName":"DeHost","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/dehost.com.tr\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"tr"},{"@type":"Organization","@id":"https:\/\/dehost.com.tr\/blog\/#organization","name":"DeHost\u00ae \u0130nternet ve Bili\u015fim Teknolojileri Sanayi Ticaret Limited \u015eirketi","url":"https:\/\/dehost.com.tr\/blog\/","logo":{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/dehost.com.tr\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/Profil1-scaled.png","contentUrl":"https:\/\/dehost.com.tr\/blog\/wp-content\/uploads\/2026\/05\/Profil1-scaled.png","width":2560,"height":2560,"caption":"DeHost\u00ae \u0130nternet ve Bili\u015fim Teknolojileri Sanayi Ticaret Limited \u015eirketi"},"image":{"@id":"https:\/\/dehost.com.tr\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/profile.php?id=100085722701227","https:\/\/x.com\/dehostcomtr","https:\/\/www.instagram.com\/dehosthosting"]},{"@type":"Person","@id":"https:\/\/dehost.com.tr\/blog\/#\/schema\/person\/de1252abb4adf4bd157e3e9f2134649a","name":"Dehost","image":{"@type":"ImageObject","inLanguage":"tr","@id":"https:\/\/secure.gravatar.com\/avatar\/188cd3dda87f9f976156cad8b97760805d622274dc8a9c620404b984d6c3d287?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/188cd3dda87f9f976156cad8b97760805d622274dc8a9c620404b984d6c3d287?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/188cd3dda87f9f976156cad8b97760805d622274dc8a9c620404b984d6c3d287?s=96&d=mm&r=g","caption":"Dehost"},"description":"Kuruldu\u011fu g\u00fcnden beri misyonuna ba\u011fl\u0131 kalan DeHost, bu ba\u011fl\u0131l\u0131\u011f\u0131n\u0131 t\u00fcm faaliyetlerine yans\u0131t\u0131r. Prensip edindi\u011fi ilkelerden ve ilk \u00f6ncelik olarak kabul etti\u011fi de\u011ferlerden g\u00fc\u00e7 alan firmam\u0131z, hizmet anlay\u0131\u015f\u0131na bu \u00e7er\u00e7evede y\u00f6n verir. \u00c7al\u0131\u015fmalar\u0131n\u0131 kurumsal vizyonu \u00e7er\u00e7evesinde s\u00fcrd\u00fcren firmam\u0131z, sekt\u00f6r\u00fcnde varl\u0131k g\u00f6stermeye ba\u015flad\u0131\u011f\u0131 g\u00fcnden bu yana bunun d\u0131\u015f\u0131na \u00e7\u0131kmam\u0131\u015ft\u0131r.","sameAs":["https:\/\/dehost.com.tr\/","https:\/\/www.facebook.com\/profile.php?id=100085722701227","https:\/\/www.instagram.com\/dehosthosting","https:\/\/www.youtube.com\/@dehostcompany"],"url":"https:\/\/dehost.com.tr\/blog\/author\/info_hhchjxlm\/"}]}},"_links":{"self":[{"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/posts\/241","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=241"}],"version-history":[{"count":1,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/posts\/241\/revisions"}],"predecessor-version":[{"id":243,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/posts\/241\/revisions\/243"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/media\/242"}],"wp:attachment":[{"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=241"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=241"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/dehost.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=241"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}