Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update the WordPress ManageWP Worker Plugin to the latest available version (at least 4.9.32).
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 16 Jun 2026 19:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Tue, 16 Jun 2026 06:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Managewp
Managewp managewp Worker Wordpress Wordpress wordpress |
|
| Vendors & Products |
Managewp
Managewp managewp Worker Wordpress Wordpress wordpress |
Mon, 15 Jun 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Unauthenticated Cross Site Scripting (XSS) in ManageWP Worker <= 4.9.31 versions. | |
| Title | WordPress ManageWP Worker plugin <= 4.9.31 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-06-16T17:12:07.093Z
Reserved: 2026-04-07T10:41:57.169Z
Link: CVE-2026-39463
Updated: 2026-06-16T13:30:00.377Z
Status : Deferred
Published: 2026-06-15T21:16:43.357
Modified: 2026-06-15T21:24:32.790
Link: CVE-2026-39463
No data.
OpenCVE Enrichment
Updated: 2026-06-17T23:15:14Z