"Four Million WordPress Sites Vulnerable to LiteSpeed Plugin Flaw"
"Four Million WordPress Sites Vulnerable to LiteSpeed Plugin Flaw"
Cybersecurity researchers at Patchstack have discovered a significant vulnerability in a WordPress plugin. The vulnerability affects the LiteSpeed Cache plugin, which boasts over 4 million active installations and presents a risk of unauthenticated site-wide stored XSS (cross-site scripting). The researchers noted that this could potentially allow unauthorized access to sensitive information or privilege escalation on affected WordPress sites via a single HTTP request.