Dan Goodin / Ars Technica:
Hackers are exploiting a critical remote code execution vulnerability in unpatched versions of Control Web Panel, a widely used interface for web hosting — A patch was released in October, but not all servers have installed it. — Malicious hackers have begun exploiting a critical vulnerability …
File source