CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/05/19 7:57 p.m.•11 views

CVE-2026-45315

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.3, the audio transcription upload endpoint takes the file extension from the user-supplied filename and saves the file under CACHEDIR/audio/transcriptions/.. The /cache/path route serve...

NVD•added 2026/05/15 10:16 p.m.•12 views

CVE-2026-45315

8.7CVSS0.0018EPSS

Vulnrichment•added 2026/05/15 9:26 p.m.•7 views

CVE-2026-45315 Open WebUI: Stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions

EUVD•added 2026/05/15 9:26 p.m.•9 views

EUVD-2026-30656

ATTACKERKB•added 2026/05/15 9:26 p.m.•10 views

CVE-2026-45315

Exploits1References2Affected Software1

CNNVD•added 2026/05/15 12:0 a.m.•8 views

Open WebUI 跨站脚本漏洞

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted WebUI that is open source. Versions of Open WebUI prior to 0.9.3 had a cross-site scripting vulnerability. This vulnerability stemmed from the audio transcription upload endpoint, which extracted the file extension from the...

8.7CVSS5.7AI score0.0018EPSS

Exploits1References3

OSV•added 2026/05/14 8:17 p.m.•5 views

GHSA-M8F9-9WHG-F4XR Open WebUI has stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions

Summary The audio transcription upload endpoint takes the file extension from the user-supplied filename and saves the file under CACHEDIR/audio/transcriptions/.. The /cache/path route serves these files via FileResponse, which sets Content-Type from the on-disk extension and emits no...

8.7CVSS6.2AI score0.0018EPSS

Exploits1References4

Github Security Blog•added 2026/05/14 8:17 p.m.•9 views

Open WebUI has stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions

8.7CVSS6.2AI score0.0018EPSS

Exploits1References4Affected Software1

NVD•added 2026/04/28 7:37 p.m.•3 views

CVE-2026-41374

OpenClaw before 2026.3.31 performs Discord audio preflight transcription before validating member authorization, allowing unauthenticated attackers to consume resources. Remote attackers can trigger audio preflight processing without member allowlist validation to cause resource exhaustion...

6.9CVSS0.00474EPSS

EUVD•added 2026/04/28 6:9 p.m.•6 views

EUVD-2026-26083

6.9CVSS5.2AI score0.00474EPSS

Positive Technologies•added 2026/04/28 12:0 a.m.•2 views

PT-2026-35759

6.9CVSS5.2AI score0.00474EPSS

Exploits0References4

NVD•added 2026/04/21 12:16 a.m.•2 views

CVE-2026-41331

OpenClaw before 2026.3.31 contains a resource consumption vulnerability in Telegram audio preflight transcription that allows unauthorized group senders to trigger transcription processing. Attackers can exploit insufficient allowlist enforcement to cause resource or billing consumption by...

6.9CVSS0.00297EPSS

CNNVD•added 2026/04/21 12:0 a.m.•7 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.3.31 contained security vulnerabilities. These vulnerabilities were caused by issues with Telegram’s audio preprocessing and transcription process, which could allow unauthorized...

6.9CVSS5.8AI score0.00297EPSS

Exploits0References1

CVE•added 2026/04/20 11:8 p.m.•9 views

CVE-2026-41331

OpenClaw is affected in versions before 2026.3.31. The vulnerability is a resource consumption issue in Telegram audio preflight transcription that can be triggered by unauthorized group senders, due to insufficient allowlist enforcement before authorization checks. The impact is resource or bill...

6.9CVSS5.8AI score0.00297EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/20 11:8 p.m.•2 views

CVE-2026-41331 OpenClaw < 2026.3.31 - Resource Consumption via Unauthorized Telegram Audio Preflight Transcription

6.9CVSS5.8AI score0.00297EPSS