POLICY-OTHER --
POLICY-OTHER LiteSpeed cPanel Plugin potential privilege escalation attempt
This rule looks for the presence of the parameter "cpanel_jsonapi_func=redisAble" in the HTTP request query. Successful exploitation could allow an attacker to gain elevated privileges on the targeted server.
This rule fires on attempts to exploit a privilege escalation vulnerability in LiteSpeed cPanel Plugin on web servers.
Attacks/Scans seen in the wild
No known false positives
Cisco Talos Intelligence Group
Rule Categories::Policy::Other
MITRE::ATT&CK Framework::Enterprise::Initial Access::Exploit Public-Facing Application
MITRE::ATT&CK Framework::Enterprise::Privilege Escalation::Exploitation for Privilege Escalation
Vulnerability::Severity::High
Vulnerability::Severity::Critical
Escalation of Privilege
An Escalation of Privilege (EOP) attack is any attack method that results in a user or application gaining permissions to access resources they normally would not have access to.
CVE-2026-48172 |
Loading description
|