CVE-2026-15072 | iqonicdesign KiviCare Plugin up to 4.5.0 on WordPress SQL Query orderby sql injection

SecurityVulns

A vulnerability categorized as critical has been discovered in iqonicdesign KiviCare Plugin up to 4.5.0 on WordPress. Affected is an unknown function of the component SQL Query Handler. Executing a manipulation of the argument orderby can lead to sql injection.

This vulnerability appears as CVE-2026-15072. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More