CVE-2026-30404

High CVSS: 7.5

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery (SSRF) vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations.

Vendor

Wgstart

Product

Wgcloud

CWE

CWE-918

Yayın Tarihi

2026-03-19 16:16:02

Güncelleme

2026-04-02 12:20:21

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-918 Wgcloud HIGH Wgstart 2026

Referanslar

https://github.com/TTTlw1024/qwe/issues/3 https://github.com/tianshiyeben/wgcloud/issues/98