What is the CVSS score of CVE-2026-54818?

CVE-2026-54818 has a CVSS 3.1 base score of 8.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L. EPSS exploitation probability: 0.2%.

Which versions of Slimstat Analytics are affected by CVE-2026-54818?

VeronaLabs Slimstat Analytics WordPress plugin versions through 5.4.11 contain a blind SQL injection vulnerability (CVSS 8.5) that allows low-privileged authenticated users to execute arbitrary SQL…

How to fix or mitigate CVE-2026-54818?

Within 24 hours: Conduct inventory of all WordPress installations to identify active use of Slimstat Analytics v5.4.11 or earlier; document user counts and privilege levels for each affected site. Within 7 days: Either (1) deactivate the plugin pending patch release, (2) restrict plugin access to administrator accounts only to eliminate low-privilege exploitation vector, or (3) implement WAF rules blocking SQL injection patterns in requests to the plugin's known vulnerable endpoints. Within 30 days: Monitor VeronaLabs and Patchstack for patch availability; establish weekly remediation status review until fully patched.

Slimstat Analytics CVE-2026-54818

HIGH

SQL Injection (CWE-89)

2026-06-17 Patchstack

SQLi Slimstat Analytics

8.5

CVSS 3.1 · Vendor: Patchstack

Severity by source

Vendor (Patchstack) PRIMARY

8.5 HIGH

AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L

vuln.today AI

9.1 CRITICAL

Network-reachable WordPress endpoint (AV:N), straightforward SQLi (AC:L), requires authenticated low-priv account (PR:L); plugin SQLi reaches core WP DB so S:C, with high confidentiality and limited integrity/availability impact.

3.1 AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L

4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:L/VA:L/SC:H/SI:L/SA:L

Primary rating from Vendor (Patchstack).

CVSS VectorVendor: Patchstack

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

None

Availability

Low

Lifecycle Timeline

Analysis Generated

Jun 17, 2026 - 14:23 vuln.today

DescriptionCVE.org

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in VeronaLabs Slimstat Analytics allows Blind SQL Injection.

This issue affects Slimstat Analytics: from n/a through 5.4.11.

AnalysisAI

Blind SQL injection in VeronaLabs Slimstat Analytics WordPress plugin through version 5.4.11 allows authenticated low-privileged users to inject SQL commands via improperly neutralized input. The CVSS 8.5 score reflects scope change (S:C) impacting the broader WordPress database beyond the plugin context, with high confidentiality impact and partial availability impact. …

Unlock full vulnerability intelligence

Risk assessment & exploitation conditions
Attack chain visualization
Remediation with exact patch versions
Threat intelligence from 22 sources
Personal watchlist & email alerts

Continue with Google Continue with GitHub

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access

Delivery

Identify vulnerable Slimstat endpoint

Exploit

Inject blind SQLi payload

Execution

Infer database contents via boolean/timing

Persist

Extract admin password hashes

Impact

Escalate to full site takeover

Access

Delivery

Identify vulnerable Slimstat endpoint

Exploit

Inject blind SQLi payload

Execution

Infer database contents via boolean/timing

Persist

Extract admin password hashes

Impact

Escalate to full site takeover

Vulnerability AssessmentAI

Exploitation	Exploitation requires an authenticated WordPress account with at least low privileges (PR:L - typically subscriber or contributor role) on a target site running VeronaLabs Slimstat Analytics through version 5.4.11. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment	The CVSS 3.1 vector (AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L) indicates network-exploitable, low-complexity attack requiring authenticated low-privileged access - consistent with WordPress subscriber or contributor accounts which are commonly available on sites with open registration. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario	An attacker registers a low-privileged WordPress account (or compromises an existing subscriber/contributor credential) on a site running Slimstat Analytics ≤ 5.4.11, then sends crafted requests to a vulnerable plugin endpoint with blind SQLi payloads (boolean or time-based) to enumerate the WordPress database. Through iterative inference, the attacker extracts administrator password hashes from wp_users and session tokens or API keys from wp_usermeta/wp_options, enabling full site takeover via offline hash cracking or session hijacking.
Remediation	Patch available per vendor advisory - upgrade Slimstat Analytics to a version newer than 5.4.11 as soon as the vendor releases a fixed version (consult the Patchstack advisory at https://patchstack.com/database/wordpress/plugin/wp-slimstat/vulnerability/wordpress-slimstat-analytics-plugin-5-4-11-sql-injection-vulnerability for the exact fix version). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours: Conduct inventory of all WordPress installations to identify active use of Slimstat Analytics v5.4.11 or earlier; document user counts and privilege levels for each affected site. …

Threat intelligence, references, and detailed analysis are available after sign-in.

More from same product – last 7 days

CVE-2026-27410 MEDIUM This Month

6.5 Jun 17

Unauthenticated deserialization of untrusted data in the Slimstat Analytics WordPress plugin (versions prior to 5.4.0) a

CVE-2026-54818 vulnerability details – vuln.today

Back