CVE-2026-30404

HIGH NVD

CVSS Score 7.5

Severity HIGH

Published Mar 19, 2026

Vendor unknown

Description

The backend database management connection test feature in wgcloud v3.6.3 has a server-side request forgery (SSRF) vulnerability. This issue can be exploited to make the server send requests to probe the internal network, remotely download malicious files, and perform other dangerous operations.

References

https://github.com/TTTlw1024/qwe/issues/3
https://github.com/tianshiyeben/wgcloud/issues/98