CVE-2026-30859

Name of the Vulnerable Software and Affected Versions WeKnora versions prior to 0.2.12

Description WeKnora is a framework for deep document understanding and semantic retrieval. A broken access control issue in the database query tool allows any authenticated tenant to read sensitive data belonging to other tenants. This includes API keys, model configurations, and private messages. The application does not enforce tenant isolation on critical tables (models, messages, embeddings), enabling unauthorized cross-tenant data access with user-level authentication privileges. The root cause is a mismatch between queryable tables and tables protected by tenant isolation. Specifically, the tables messages, embeddings, and models are queryable but not protected by tenant isolation, meaning queries against these tables do not have the automatic WHERE tenant id = X filtering applied. An attacker can exploit this by crafting SQL queries via the database query tool to access sensitive data from other tenants. The vulnerable code resides in internal/utils/inject.go and database query.go.

Recommendations Update to WeKnora version 0.2.12 or later.