CVE-2026-29205 | WebPros cPanel/WP Squared Cpdavd Attachment Download Endpoint unnecessary privileges

A vulnerability described as critical has been identified in WebPros cPanel and WP Squared. Affected by this issue is some unknown functionality of the component Cpdavd Attachment Download Endpoint. Executing a manipulation can lead to execution with unnecessary privileges.

This vulnerability is registered as CVE-2026-29205. It is possible to launch the attack remotely. No exploit is available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More