3 matches found
hubzoid (>=0.2.2 <=0.4.5), openwebui-token-tracking (>=0.1.8 <=0.1.10) +1 more potentially affected by CVE-2026-45338 via open-webui (=0.8.8)
open-webui PYPI version =0.8.8 is affected by a known vulnerability. The following packages have a transitive dependency on open-webui and may be impacted: - hubzoid =0.2.2, =0.1.8, =0.1.0, =0.1.5 Source cves: CVE-2026-45338 Source advisory: SNYK:PYTHON-OPENWEBUI-16748846...
hubzoid (>=0.2.2 <=0.4.5), openwebui-token-tracking (>=0.1.7 <=0.1.10) +1 more potentially affected by CVE-2026-45338 via open-webui (>=0.6.0 <=0.8.8)
open-webui PYPI version =0.6.0, =0.2.2, =0.1.7, =0.1.0, =0.1.5 Source cves: CVE-2026-45338 Source advisory: OSV:GHSA-24C9-2M8Q-QHMH...
CVE-2026-45338
creationtimestamp| type| source ---|---|--- 2026-05-09 19:11:52+00:00| published-proof-of-concept| https://github.com/open-webui/open-webui/security/advisories/GHSA-24c9-2m8q-qhmh...