Critical WordPress Plugin Vulnerability Exposes 1 Million Sites to SQL Injections

A researcher recently discovered a critical vulnerability in LayerSlider, a premium WordPress plugin used by over 1 million websites. The flaw exposes impacted websites to unauthenticated SQL injection attacks, letting potential attackers retrieve significant data. LayerSlider, the vulnerable plugin, is a popular tool that lets website owners create image galleries, animations, and responsive sliders. Critical Flaw Reported to Bug Bounty Program Tracked as CVE-2024-2879 [https://nvd.nist.gov/