CVE-2026-30858 | Tencent WeKnora up to 0.2.x web_fetch server-side request forgery

Inserito da Angelo Barbosa | Mar 7, 2026 | CVE

A vulnerability was found in Tencent WeKnora up to 0.2.x and classified as critical. The affected element is an unknown function of the component web_fetch. Executing a manipulation can lead to server-side request forgery.

This vulnerability is handled as CVE-2026-30858. The attack can be executed remotely. There is not any exploit available.

It is suggested to upgrade the affected component.

CVE-2026-30858 | Tencent WeKnora up to 0.2.x web_fetch server-side request forgery

Post correlati

CVE-2025-9441 | iATS Online Forms Plugin up to 1.2 on WordPress order sql injection

CVE-2024-38314 | IBM Maximo Application Suite 8.10/8.11/9.0 Monitor hard-coded key

CVE-2024-37007 | Autodesk AutoCAD/Advance Steel and Civil 3D 2024 X_B File pskernel.DLL use after free

CVE-2026-29062 | FasterXML jackson-core up to 3.0.x JSON Document allocation of resources