CVE-2020-20625 · Vexday

CVE-2020-20625

EPSS 1.7%

Sliced Invoices plugin for WordPress 3.8.2 and earlier allows unauthenticated information disclosure and authenticated SQL injection via core/class-sliced.php.

Affected products

n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://blog.nintechnet.com/multiple-vulnerabilities-in-sliced-invoices-plugin/