All 5 CVE vulnerabilities found in dbgate, with AI-generated Chinese analysis, references, and POCs.
Vendor: dbgate
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-6216 | DbGate SVG Icon String FontIcon.svelte cross site scripting CWE-79 | 3.5 | Low | 2026-04-13 |
| CVE-2026-6215 | DbGate REST/GraphQL openApiDriver.ts apiServerUrl1 server-side request forgery CWE-918 | 6.3 | Medium | 2026-04-13 |
| CVE-2026-34725 | dbgate-web: Stored XSS in applicationIcon leads to potential RCE in Electron due to unsafe renderer configuration CWE-94 | 8.3 | High | 2026-04-02 |
| CVE-2025-50185 | DbGate allows Unauthorized File Access via CSV Plugin CWE-29 | 6.5 | - | 2025-07-26 |
| CVE-2025-50184 | DbGate allows for File Traversal via file parameter CWE-29 | 7.5 | - | 2025-07-26 |
All 5 known CVE vulnerabilities affecting dbgate with full Chinese analysis, references, and POCs where available.