cleantalk
Vulnerabilities and Security Researches

KiviCare – Clinic & Patient Management System (EHR), CVE-2026-25034

CVE, Research URL

CVE-2026-25034

Home page URL

Security reports for KiviCare – Clinic & Patient Management System (EHR)

Application

KiviCare – Clinic & Patient Management System (EHR)

Published on
Mar 25, 2026
Research Description
Missing Authorization vulnerability in Iqonic Design KiviCare kivicare-clinic-management-system allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects KiviCare: from n/a through <= 3.6.16.
Affected versions
max 3.6.16.
Status
vulnerable
Previous vulnerability researches
YayMail &#8211; WooCommerce Email Customizer (CVE-2026-27327) , Mar 29, 2026
New vulnerability
Podlove Web Player (CVE-2026-24385) , Mar 30, 2026
Latest Post Shortcode (CVE-2026-31916) , Mar 30, 2026
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2026-24364) , Mar 30, 2026
WP User Frontend &#8211; Registration, User Profile, Membership, Content Restriction, User Directory, and Frontend Post Submiss (CVE-2026-32485) , Mar 30, 2026
Product Slider for WooCommerce by PickPlugins (CVE-2026-25455) , Mar 30, 2026