VYPR
High severity7.5NVD Advisory· Published Mar 19, 2026· Updated Apr 2, 2026

CVE-2026-30404

CVE-2026-30404

Description

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery (SSRF) vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1
  • cpe:2.3:a:wgstart:wgcloud:*:*:*:*:*:*:*:*
    Range: <=3.6.3

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.