CVE-2026-30858

Name of the Vulnerable Software and Affected Versions WeKnora versions prior to 0.3.0

Description WeKnora, an LLM-powered framework for deep document understanding and semantic retrieval, contains a DNS rebinding issue in the web fetch tool. An unauthenticated attacker can bypass URL validation and access internal resources on the server, including private IP addresses like 127.0.0.1 and 192.168.x.x. This is possible by crafting a malicious domain that initially resolves to a public IP address during validation and then resolves to a private IP address during execution. The web fetch tool lacks complete DNS pinning, performing URL validation only once via the validateParams() function. The original URL is then passed unchanged to the fetchHTMLContent() function, which ultimately calls fetchWithChromedp(). The headless browser (Chromedp) independently resolves the hostname without DNS pinning, creating a time-of-check-time-of-use (TOCTOU) condition. The vulnerability allows access to sensitive local services and potential data exfiltration.

Recommendations Update WeKnora to version 0.3.0 or later.