Critical WordPress Plugin Vulnerability Exposes 1 Million Sites to SQL Injections
A researcher recently discovered a critical vulnerability in LayerSlider, a
premium WordPress plugin used by over 1 million websites.
The flaw exposes impacted websites to unauthenticated SQL injection attacks,
letting potential attackers retrieve significant data.
LayerSlider, the vulnerable plugin, is a popular tool that lets website owners
create image galleries, animations, and responsive sliders.
Critical Flaw Reported to Bug Bounty Program
Tracked as CVE-2024-2879 [https://nvd.nist.gov/