A vulnerability described as critical has been identified in VeronaLabs Slimstat Analytics Plugin up to 5.4.11 on WordPress. The affected element is an unknown function. The manipulation results in sql injection. This vulnerability was named CVE-2026-54818 . The attack may be performed from remote. There is no available exploit.