This is a few days old now but a new high-severity security flaw has been disclosed in the LiteSpeed Cache plugin for WordPress that could enable malicious actors to execute arbitrary JavaScript code under certain conditions.

https://thehackernews.com/2024/10/wordpress-litespeed-cache-plugin.html