CVE-2026-30858 | Tencent WeKnora up to 0.2.x web_fetch server-side request forgery

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability was found in Tencent WeKnora up to 0.2.x and classified as critical. The affected element is an unknown function of the component web_fetch. Executing a manipulation can lead to server-side request forgery.

This vulnerability is handled as CVE-2026-30858. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-30858 | Tencent WeKnora up to 0.2.x web_fetch server-side request forgery

Post correlati

CVE-2024-52447 | Corporate Zen Contact Page with Google Map Plugin up to 1.6.1 on WordPress path traversal

CVE-2024-3066 | Elegant Addons for Elementor Plugin up to 1.0.8 on WordPress HTML Tag HTML injection

CVE-2024-10522 | seb-emendo Co-marquage service-public.fr Plugin up to 0.5.76 on WordPress add_query_arg cross site scripting

CVE-2024-49308 | Toast Plugins Animator Plugin up to 3.0.11 on WordPress cross site scripting