cPanel · Top 20

EasyApache 4 25.69

⚠️ Importante

Security and maintenance updates We released an updated ea-tomcat101 package for EasyApache 4. This security release updates Apache Tomcat to 10.1.56, addressing six CVEs (CVE-2026-55956, CVE-2026-55955, CVE-2026-55276, CVE-2026-53434, CVE…

cPanel Release Notes (RSS) CVE-2026-55956CVE-2026-55955CVE-2026-55276CVE-2026-53434CVE-2026-53404CVE-2026-50229 CVSS 9.1 2026-07-02 15:30 UTC · 2026-07-02 12:30 -03

AWS partner rollout Server Monitoring rollout for the AWS partner. For a full list of changes, read the Server Monitoring change log.

cPanel Release Notes (RSS) 2026-06-26 16:00 UTC · 2026-06-26 13:00 -03

EasyApache 4 25.68

⚠️ Importante

Maintenance updates We released updated packages for EasyApache 4. This maintenance release updates three nginx scripting and header modules: ea-nginx-echo to v0.65 (OOM safety fix), ea-nginx-headers-more to v0.40 (Content-Type charset par…

cPanel Release Notes (RSS) 2026-06-24 21:30 UTC · 2026-06-24 18:30 -03

Bug fix We released a bug fix update for Site Quality Monitoring. * SQM-227: Fixed an infinite redirect loop and repeated authentication emails when re-opening Site Quality Monitoring from cPanel. For a full list of changes, read the Site …

cPanel Release Notes (RSS) 2026-06-24 20:00 UTC · 2026-06-24 17:00 -03

Removed Sitejet AI promotional banner We removed the Sitejet AI promotional banner from the cPanel Tools page. This does not change Sitejet Builder functionality. For a full list of changes, read the Sitejet Builder change log.

cPanel Release Notes (RSS) 2026-06-22 14:00 UTC · 2026-06-22 11:00 -03

EasyApache 4 25.67

⚠️ Importante

Security updates We released updated packages for EasyApache 4. This security release updates ea-nginx from v1.31.1 to v1.31.2, addressing two CVEs from the nginx 2026-06-17 advisory: CVE-2026-42055 (Medium: buffer overflow in ngx_http_pro…

cPanel Release Notes (RSS) CVE-2026-42055CVE-2026-48142CVE-2026-48618CVE-2026-48933 CVSS 6.3 2026-06-18 19:30 UTC · 2026-06-18 16:30 -03

EasyApache 4 25.66

⚠️ Importante

Security and maintenance updates We released updated packages for EasyApache 4. This security and maintenance release patches ea-openssl11 to 1.1.1w-8 (CentOS 7 only) with TuxCare/ELS backports addressing five CVEs including four High-seve…

cPanel Release Notes (RSS) CVE-2026-45447CVE-2026-34180CVE-2026-7383CVE-2026-9076 CVSS 8.8 2026-06-17 21:00 UTC · 2026-06-17 18:00 -03

DigitalOcean partner rollout Server Monitoring rollout for the DigitalOcean partner. For a full list of changes, read the Server Monitoring change log.

cPanel Release Notes (RSS) 2026-06-17 18:00 UTC · 2026-06-17 15:00 -03

EasyApache 4 25.65

⚠️ Importante

Security and maintenance updates We released updated packages for EasyApache 4. This security and maintenance release updates ea-apache24 to v2.4.68, which addresses thirteen CVEs in the Apache HTTP Server including two critical mod_http2 …

cPanel Release Notes (RSS) CVE-2026-49975CVE-2026-48913 CVSS 7.5 2026-06-10 15:30 UTC · 2026-06-10 12:30 -03

Comet Backup 1.5.5

⚠️ Importante

Bug fixes This release fixes an issue where WebPros remote storage did not update after a Comet Backup license change, and enables cloud storage provisioning from the Destinations tab on storage-tier licenses with re-authentication resume…

cPanel Release Notes (RSS) 2026-06-10 14:30 UTC · 2026-06-10 11:30 -03

Google Cloud partner rollout Server Monitoring rollout for the Google Cloud partner. For a full list of changes, read the Server Monitoring change log.

cPanel Release Notes (RSS) 2026-06-10 14:30 UTC · 2026-06-10 11:30 -03

Improved permission and domain-ownership validation Improve permission and domain-ownership validation for Sitejet actions. For a full list of changes, read the Sitejet Builder change log.

cPanel Release Notes (RSS) 2026-06-04 23:00 UTC · 2026-06-04 20:00 -03

SPA modal notification for new activations SPA modal notification after plugin activation. New partner rollout. For a full list of changes, read the Server Monitoring change log.

cPanel Release Notes (RSS) 2026-06-03 23:30 UTC · 2026-06-03 20:30 -03

Comet Backup 1.5.4

⚠️ Importante

Bug fixes and improvements This release stops Comet backups from consuming all local disk space during a backup run, fixes restore backup options being hidden in the UI when no backup jobs exist, ensures the outbound User-Agent is not inh…

cPanel Release Notes (RSS) 2026-06-03 23:30 UTC · 2026-06-03 20:30 -03

EasyApache 4 25.64

⚠️ Importante

Security and maintenance updates We released updated packages for EasyApache 4. This security release patches CVE-2026-49975 in ea-apache24. Attackers can craft malicious HTTP/2 cookie headers that multiply across streams, consuming excess…

cPanel Release Notes (RSS) CVE-2026-49975 CVSS 7.5 2026-06-03 17:30 UTC · 2026-06-03 14:30 -03

EasyApache 4 25.63

⚠️ Importante

Hotfix security release We released updated packages for EasyApache 4. This release addresses CVE-2026-9256 (nginx-poolslip), a critical remote code execution vulnerability affecting all nginx versions, fixed in ea-nginx 1.31.1. Phusion Pa…

cPanel Release Notes (RSS) CVE-2026-9256 CVSS 9.2 2026-05-22 22:30 UTC · 2026-05-22 19:30 -03

Updated publish/polling access controls Improve Sitejet publish/polling access controls. For a full list of changes, read the Sitejet Builder change log.

cPanel Release Notes (RSS) 2026-05-21 22:00 UTC · 2026-05-21 19:00 -03

EasyApache 4 25.62

⚠️ Importante

Hotfix security release We released updated packages for EasyApache 4. This release addresses CVE-2026-8711 in ea-nginx-njs and CVE-2026-47783, CVE-2026-47784 in ea-memcached16. For a full list of changes, read the EasyApache 4 change log.

cPanel Release Notes (RSS) CVE-2026-8711CVE-2026-47783CVE-2026-47784 CVSS 9.2 2026-05-21 20:00 UTC · 2026-05-21 17:00 -03

Maintenance release We released updated packages for EasyApache 4. For a full list of changes, read the EasyApache 4 change log.

cPanel Release Notes (RSS) 2026-05-20 23:00 UTC · 2026-05-20 20:00 -03

Bug fixes Fixed regex.custom.pm custom rules silently failing to match log lines (CPANEL-53173). Fixed csf -cf $file no longer retaining newlines in the file (CPANEL-52801). For a full list of changes, read the ConfigServer Security & …

cPanel Release Notes (RSS) 2026-05-19 22:00 UTC · 2026-05-19 19:00 -03