A vulnerability described as problematic has been identified in managewp ManageWP Worker Plugin up to 4.9.31 on WordPress. This affects an unknown function of the component HTTP Request Header Handler . Executing a manipulation can lead to cross site scripting. The identification of this vulnerability is CVE-2026-3718 . The attack may be launched remotely. There is no exploit available.