A popular WordPress plugin called “Prime Slider – Addons For Elementor” has a security vulnerability that allows attackers to inject harmful code into web pages. This can happen if the attacker has Contributor-level access or higher. The vulnerability is caused by the plugin not properly filtering and escaping user input, making it possible for attackers to execute their code whenever someone visits a page that has been targeted.