A vulnerability marked as critical has been reported in SlicedInvoices Sliced Invoices Plugin 3.8.2 on WordPress. This issue affects some unknown processing of the file admin.php . The manipulation of the argument post leads to sql injection. This vulnerability is listed as CVE-2019-25746 . The attack may be initiated remotely. In addition, an exploit is available.