A cross-site scripting (XSS) vulnerability in the LiteSpeed Cache plugin prior to 3.6.1 for WordPress can be exploited via the Server IP setting.
litespeedtech litespeed cache