CVE-2026-30857
published 2026-03-07CVE-2026-30857: WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.3.0, a cross-tenant authorization…
PriorityP430medium5.3CVSS 3.1
AVNACHPRLUINSUCHINAN
EPSS
0.22%
12.7th percentile
WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.3.0, a cross-tenant authorization bypass in the knowledge base copy endpoint allows any authenticated user to clone (duplicate) another tenant’s knowledge base into their own tenant by knowing/guessing the source knowledge base ID. This enables bulk data exfiltration (document/FAQ content) across tenants. This issue has been patched in version 0.3.0.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| github.com | tencent_weknora | >= 0 < 0.3.0 | 0.3.0 |
| tencent | weknora | < 0.3.0 | 0.3.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning in github.com/Tencent/WeKnora
osv·2026-03-10
CVE-2026-30857 WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning in github.com/Tencent/WeKnora
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning in github.com/Tencent/WeKnora
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning in github.com/Tencent/WeKnora
OSV
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning
osv·2026-03-06
CVE-2026-30857 [MEDIUM] WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning
### Summary
A cross-tenant authorization bypass in the knowledge base copy endpoint allows any authenticated user to clone (duplicate) another tenant’s knowledge base into their own tenant by knowing/guessing the source knowledge base ID. This enables bulk data exfiltration (document/FAQ content) across tenants, making the impact critical.
### Details
The `POST /api/v1/knowledge-bases/copy` endpoint enqueues an asynchronous KB clone task using the caller-supplied `source_id` without verifying ownership (see `internal/handler/knowledgebase.go`).
```go
// Create KB clone payload
payload := types.KBClonePayload{
TenantID: tenantID.(uint64),
TaskID: taskID,
SourceID: req.SourceID, // from attacker's input
TargetID: req.TargetID,
}
GHSA
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning
ghsa·2026-03-06
CVE-2026-30857 [MEDIUM] CWE-639 WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning
WeKnora has Unauthorized Cross‑Tenant Knowledge Base Cloning
### Summary
A cross-tenant authorization bypass in the knowledge base copy endpoint allows any authenticated user to clone (duplicate) another tenant’s knowledge base into their own tenant by knowing/guessing the source knowledge base ID. This enables bulk data exfiltration (document/FAQ content) across tenants, making the impact critical.
### Details
The `POST /api/v1/knowledge-bases/copy` endpoint enqueues an asynchronous KB clone task using the caller-supplied `source_id` without verifying ownership (see `internal/handler/knowledgebase.go`).
```go
// Create KB clone payload
payload := types.KBClonePayload{
TenantID: tenantID.(uint64),
TaskID: taskID,
SourceID: req.SourceID, // from attacker's input
TargetID: req.TargetID,
}
No detection rules found.
No public exploits indexed.
2026-03-07
Published