CVE-2026-11990 | iqonicdesign KiviCare Plugin up to 4.4.0 on WordPress Authorization Verification payment_id authorization
A vulnerability was found in iqonicdesign KiviCare Plugin up to 4.4.0 on WordPress. It has been classified as critical. Impacted is an unknown function of the component Authorization Verification. The manipulation of the argument payment_id leads to authorization bypass.
This vulnerability is traded as CVE-2026-11990. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More