A popular plugin for WordPress called Slider, Gallery, and Carousel by MetaSlider has a security issue that could allow hackers to inject harmful code into websites. This is because the plugin did not properly clean up user inputs and outputs. Attackers with high-level permissions could potentially exploit this vulnerability on multi-site installations or if certain security settings are turned off.