WordPress Plugin 'WP User Manager' Allows Unauthorized User Access

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

WordPress Plugin 'WP User Manager' Allows Unauthorized User Access

MINI-cv4c-77qp-5f3v

Summary

The WP User Manager plugin for WordPress allows attackers to access and manipulate user accounts without a password, potentially allowing unauthorized access to sensitive data. This affects versions of the plugin installed on WordPress sites. To protect your site, update the WP User Manager plugin to the latest version or remove it if you no longer need it.

What to do

Update external-secrets-operator-fips to version 2.1.0-r0.

Affected software

Vendor	Product	Affected versions	Fix available
–	external-secrets-operator-fips	<= 2.1.0-r0	2.1.0-r0

Original title

MINI-cv4c-77qp-5f3v

Published: 10 Mar 2026 · Updated: 13 Mar 2026 · First seen: 10 Mar 2026