Lucene search
K

28 matches found

RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.5 views

CVE-2026-30404

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery SSRF vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations...

7.5CVSS5.8AI score0.00253EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.4 views

CVE-2026-30402

An issue in wgcloud v.2.3.7 and before allows a remote attacker to execute arbitrary code via the test connection function...

9.8CVSS6.2AI score0.00715EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/03/26 3:18 p.m.5 views

CVE-2026-30403

There is an arbitrary file read vulnerability in the test connection function of backend database management in wgcloud v3.6.3 and before, which can be used to read any file on the victim's server...

7.5CVSS5.9AI score0.00375EPSS
Exploits1References1
EUVD
EUVD
added 2026/03/19 6:31 p.m.5 views

EUVD-2026-13119

There is an arbitrary file read vulnerability in the test connection function of backend database management in wgcloud v3.6.3 and before, which can be used to read any file on the victim's server...

5.9AI score0.00375EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/19 6:31 p.m.6 views

EUVD-2026-13120

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery SSRF vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations...

5.8AI score0.00253EPSS
Exploits1References3
NVD
NVD
added 2026/03/19 5:16 p.m.6 views

CVE-2026-30403

There is an arbitrary file read vulnerability in the test connection function of backend database management in wgcloud v3.6.3 and before, which can be used to read any file on the victim's server...

7.5CVSS0.00375EPSS
Exploits1References2
NVD
NVD
added 2026/03/19 4:16 p.m.5 views

CVE-2026-30404

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery SSRF vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations...

7.5CVSS0.00253EPSS
Exploits1References2
EUVD
EUVD
added 2026/03/19 3:31 p.m.6 views

EUVD-2026-13109

An issue in wgcloud v.2.3.7 and before allows a remote attacker to execute arbitrary code via the test connection function...

9.8CVSS6.2AI score0.00715EPSS
Exploits1References3
NVD
NVD
added 2026/03/19 3:16 p.m.3 views

CVE-2026-30402

An issue in wgcloud v.2.3.7 and before allows a remote attacker to execute arbitrary code via the test connection function...

9.8CVSS0.00715EPSS
Exploits1References2
CVE
CVE
added 2026/03/19 12:0 a.m.6 views

CVE-2026-30403

CVE-2026-30403 affects wgcloud before 3.6.3, where the vulnerable area is the test connection function in the backend database management module. The issue allows an attacker to perform an arbitrary file read on the victim’s server, exposing sensitive files. The description and connected sources ...

7.5CVSS5.9AI score0.00375EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/19 12:0 a.m.3 views

CVE-2026-30403

There is an arbitrary file read vulnerability in the test connection function of backend database management in wgcloud v3.6.3 and before, which can be used to read any file on the victim's server...

5.9AI score0.00375EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/19 12:0 a.m.3 views

CVE-2026-30404

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery SSRF vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations...

5.8AI score0.00253EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/03/19 12:0 a.m.6 views

wgcloud 安全漏洞

wgcloud is a lightweight distributed server monitoring and operation system developed by tianshiyeben as an individual developer. Versions of wgcloud prior to 2.3.7 contain security vulnerabilities. These vulnerabilities stem from defects in the test connection function, which may allow for remot...

9.8CVSS6.1AI score0.00715EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/19 12:0 a.m.2 views

CVE-2026-30404

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery SSRF vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations...

5.8AI score0.00253EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/19 12:0 a.m.6 views

PT-2026-26305

CVE-2026-30403 There is an arbitrary file read vulnerability in the test connection function of backend database management in wgcloud v3.6.3 and before, which can be used to read a… https://t.co/WiMRkDP1zD...

5.9AI score0.00375EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/03/19 12:0 a.m.2 views

CVE-2026-30402

An issue in wgcloud v.2.3.7 and before allows a remote attacker to execute arbitrary code via the test connection function...

6.2AI score0.00715EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/03/19 12:0 a.m.19 views

CVE-2026-30402

An issue in wgcloud v.2.3.7 and before allows a remote attacker to execute arbitrary code via the test connection function...

0.00715EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/19 12:0 a.m.4 views

CVE-2026-30403

There is an arbitrary file read vulnerability in the test connection function of backend database management in wgcloud v3.6.3 and before, which can be used to read any file on the victim's server...

5.9AI score0.00375EPSS
Exploits1References3
CVE
CVE
added 2026/03/19 12:0 a.m.10 views

CVE-2026-30402

CVE-2026-30402 affects wgcloud v2.3.7 and earlier. A remote attacker can execute arbitrary code via the test connection function, per CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (base score 9.8). No remediation details are provided in the supplied documents.

9.8CVSS6.2AI score0.00715EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/03/19 12:0 a.m.8 views

CVE-2026-30404

The CVE-2026-30404 entry concerns wgcloud v3.6.3, where the backend database management connection test feature is vulnerable to server-side request forgery (SSRF). The vulnerability could allow the server to initiate requests to internal networks, remotely download malicious files, and perform o...

7.5CVSS5.8AI score0.00253EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder