Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/24 9:15 a.m.8 views

CVE-2026-0927

The KiviCare – Clinic & Patient Management System EHR plugin for WordPress is vulnerable to arbitrary file uploads due to missing authorization checks in the uploadMedicalReport function in all versions up to, and including, 3.6.15. This makes it possible for unauthenticated attackers to upload...

5.3CVSS5.7AI score0.003EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/01/23 5:29 a.m.2 views

CVE-2026-0927

The KiviCare – Clinic & Patient Management System EHR plugin for WordPress is vulnerable to arbitrary file uploads due to missing authorization checks in the uploadMedicalReport function in all versions up to, and including, 3.6.15. This makes it possible for unauthenticated attackers to upload...

5.3CVSS5.5AI score0.003EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/01/23 12:0 a.m.4 views

PT-2026-4325

The KiviCare – Clinic & Patient Management System EHR plugin for WordPress is vulnerable to arbitrary file uploads due to missing authorization checks in the uploadMedicalReport function in all versions up to, and including, 3.6.15. This makes it possible for unauthenticated attackers to upload...

5.3CVSS5.7AI score0.003EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/23 12:0 a.m.6 views

WordPress plugin KiviCare – Clinic & Patient Management System (EHR) has security vulnerabilities.

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

5.3CVSS5.9AI score0.003EPSS
Exploits0References5
Rows per page
Query Builder