Lucene search
K

5 matches found

OSV
OSV
added 2026/03/27 3:34 p.m.3 views

GHSA-JJP7-G2JW-WH3J Open WebUI's process_files_batch() endpoint missing ownership check, allows unauthorized file overwrite

Summary Any authenticated user can overwrite any file's content by ID through the POST /api/v1/retrieval/process/files/batch endpoint. The endpoint performs no ownership check, so a regular user with read access to a shared knowledge base can obtain file UUIDs via GET /api/v1/knowledge/id/files a...

7.1CVSS5.9AI score0.02858EPSS
Exploits1References4
Snyk
Snyk
added 2026/03/27 3:34 p.m.1 views

Authorization Bypass Through User-Controlled Key

Overview open-webui is an Open WebUI Affected versions of this package are vulnerable to Authorization Bypass Through User-Controlled Key through the processfilesbatch endpoint lacking proper ownership verification. An attacker can overwrite files belonging to other users and manipulate the conte...

7.1CVSS5.9AI score0.02858EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/03/27 3:34 p.m.7 views

Open WebUI's process_files_batch() endpoint missing ownership check, allows unauthorized file overwrite

Summary Any authenticated user can overwrite any file's content by ID through the POST /api/v1/retrieval/process/files/batch endpoint. The endpoint performs no ownership check, so a regular user with read access to a shared knowledge base can obtain file UUIDs via GET /api/v1/knowledge/id/files a...

7.1CVSS5.9AI score0.02858EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2026/03/26 11:38 p.m.13 views

CVE-2026-28788

Open WebUI vulnerability CVE-2026-28788 affects the self-hosted Open WebUI AI platform. Before version 0.8.6, an authenticated user can overwrite any file’s content by ID via POST /api/v1/retrieval/process/files/batch. The endpoint performs no ownership check, enabling a user with read access to ...

7.1CVSS5.8AI score0.02858EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/03/26 11:38 p.m.4 views

CVE-2026-28788 Open WebUI's process_files_batch() endpoint missing ownership check, allows unauthorized file overwrite

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.8.6, any authenticated user can overwrite any file's content by ID through the POST /api/v1/retrieval/process/files/batch endpoint. The endpoint performs no ownership check, so a...

7.1CVSS5.9AI score0.02858EPSS
Exploits1References3
Rows per page
Query Builder