A vulnerability, which was classified as critical, has been found in iqonicdesign KiviCare Plugin up to 3.6.4 on WordPress. Affected by this issue is the function visit_type[service_id]. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2024-11728. The attack may be launched remotely. There is no exploit available.