HIGH
BRI
CVE published 2026-03-23
CVE-2026-1958
A critical vulnerability in Klinika XP and KlinikaXP Insertino software products involved hard-coded credentials embedded in application code, enabling unauthorized access to internal services including an FTP server hosting software update packages. An attacker with these credentials could upload malicious files that would be distributed to client machines as legitimate updates, creating a software suppl [truncated]