CVE-2026-11590: WordPress Plugin SQL Injection via Unsanitized Array Keys — Casky — Casky