CVE-2024-11729

Name of the Vulnerable Software and Affected Versions KiviCare – Clinic & Patient Management System (EHR) plugin for WordPress versions up to and including 3.6.4

Description The issue is related to SQL injection through the service list[0][service id] parameter of the AJAX action get widget payment options. This vulnerability is due to insufficient escaping of the user-supplied parameter and lack of sufficient preparation in the existing SQL query. It allows authenticated attackers with Custom-level access and above to append additional SQL queries to existing ones, potentially extracting sensitive information from the database.

Recommendations For versions up to and including 3.6.4, update to a version higher than 3.6.4 to resolve the issue. As a temporary workaround, consider restricting access to the get widget payment options AJAX action until a patch is available. Avoid using the service list[0][service id] parameter in the affected AJAX endpoint until the issue is resolved.