CVE-2026-30860

CRITICAL LAB

WeKnora <0.2.12 - RCE via SQL Injection

Title source: llm

Description

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.12, a remote code execution (RCE) vulnerability exists in the application's database query functionality. The validation system fails to recursively inspect child nodes within PostgreSQL array expressions and row expressions, allowing attackers to bypass SQL injection protections. By smuggling dangerous PostgreSQL functions inside these expressions and chaining them with large object operations and library loading capabilities, an unauthenticated attacker can achieve arbitrary code execution on the database server with database user privileges. This issue has been patched in version 0.2.12.

Exploits (1)

github WORKING POC 1 stars

by exploitintel · cpoc

https://github.com/exploitintel/eip-pocs-and-cves/tree/main/CVE-2026-30860

View Code ZIP pw:eip

References (1)

[Vendor Advisory] https://github.com/Tencent/WeKnora/security/advisories/GHSA-8w32-6mrw-q5wv

Scores

CVSS v3 9.9

EPSS 0.0008

EPSS Percentile 22.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Lab Environment

vulnerable

docker pull ghcr.io/exploitintel/cve-2026-30860-vulnerable:latest

All Labs GitHub

Classification

CWE

CWE-89

Status draft

Affected Products (1)

Tencent/WeKnora < 0.2.12Go

Timeline

Published Mar 07, 2026

Tracked Since Mar 08, 2026