CVE-2026-49776: Security Advisory

CVE: CVE-2026-49776 CVSS 9.3

CVE-2026-49776 is a critical-severity vulnerability (CVSS 9.3).

Summary

Unauthenticated SQL Injection in GPTranslate – Multilingual AI Translation for WordPress: Automatically Translate Websites <= 2.32.6 versions.

Remediation

Apply the vendor’s update during your next patch window and verify exposure. Patch-management tools that can deploy and verify the fix include Action1, Automox, ManageEngine Patch Manager Plus, ManageEngine Endpoint Central. See our best patch management ranking.

Sources

Data as of June 16, 2026. Sources: nvd.nist.gov, patchstack.com. Figures are pulled from public vendor and security data and refreshed automatically.