A high-severity stored cross-site scripting (XSS) vulnerability (CVE-2024-47374) has been discovered in the LiteSpeed Cache plugin for WordPress, affecting versions up to 6.5.0.2. This flaw allows attackers to inject malicious JavaScript and potentially hijack user sessions or take over entire sites, especially if an administrator account is compromised. The vulnerability was patched in version 6.5.1, and users are advised to update immediately to protect their sites.