CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2024-7990

A stored cross-site scripting XSS vulnerability exists in open-webui/open-webui version 0.3.8. The vulnerability is present in the /api/v1/models/add endpoint, where the model description field is improperly sanitized before being rendered in chat. This allows an attacker to inject malicious...

8.4CVSS7.6AI score

OSV•added 2025/03/20 10:15 a.m.•3 views

CVE-2024-8017

An XSS vulnerability exists in open-webui/open-webui versions = 0.3.8, specifically in the function that constructs the HTML for tooltips. This vulnerability allows attackers to perform operations with the victim's privileges, such as stealing chat history, deleting chats, and escalating their ow...

9CVSS8.7AI score

OSV•added 2025/03/20 10:15 a.m.•10 views

CVE-2024-7806

A vulnerability in open-webui/open-webui versions = 0.3.8 allows remote code execution by non-admin users via Cross-Site Request Forgery CSRF. The application uses cookies with the SameSite attribute set to lax for authentication and lacks CSRF tokens. This allows an attacker to craft a malicious...

8.8CVSS8.4AI score

NVD•added 2025/03/20 10:15 a.m.•8 views

CVE-2024-7806

8.8CVSS0.00444EPSS

Exploits2References1

4.4CVSS5.8AI score0.00311EPSS

CVE-2024-7058

A vulnerability in the sanitizepath function in parisneo/lollms-webui v10 - latest allows an attacker to bypass path sanitization by using relative paths such as './'. This can lead to unauthorized access to directories within the personalityfolder on the victim's computer...

NVD•added 2025/03/20 10:15 a.m.•5 views

CVE-2024-7046

An improper access control vulnerability in open-webui/open-webui v0.3.8 allows an attacker to view admin details. The application does not verify whether the attacker is an administrator, allowing the attacker to directly call the /api/v1/auths/admin/details interface to retrieve the first admin...

4.3CVSS0.00401EPSS

NVD•added 2025/03/20 10:15 a.m.•25 views

CVE-2024-7053

A vulnerability in open-webui/open-webui version 0.3.8 allows an attacker with a user-level account to perform a session fixation attack. The session cookie for all users is set with the default SameSite=Lax and does not have the Secure flag enabled, allowing the session cookie to be sent over HT...

9CVSS0.00659EPSS

CVE-2024-7046

4.3CVSS6.9AI score

OSV•added 2025/03/20 10:15 a.m.•9 views

CVE-2024-7053

9CVSS8AI score

OSV•added 2025/03/20 10:15 a.m.•6 views

CVE-2024-7044

A Stored Cross-Site Scripting XSS vulnerability exists in the chat file upload functionality of open-webui/open-webui version 0.3.8. An attacker can inject malicious content into a file, which, when accessed by a victim through a URL or shared chat, executes JavaScript in the victim's browser. Th...

8.9CVSS6AI score

CVE-2024-7039

In open-webui/open-webui version v0.3.8, there is an improper privilege management vulnerability. The application allows an attacker, acting as an admin, to delete other administrators via the API endpoint http://0.0.0.0:8080/api/v1/users/uuidadministrator. This action is restricted by the user...

6.7CVSS8.2AI score

OSV•added 2025/03/20 10:15 a.m.•2 views

CVE-2024-7043

An improper access control vulnerability in open-webui/open-webui v0.3.8 allows attackers to view and delete any files. The application does not verify whether the attacker is an administrator, allowing the attacker to directly call the GET /api/v1/files/ interface to retrieve information on all...

8.8CVSS7.7AI score

NVD•added 2025/03/20 10:15 a.m.•5 views

CVE-2024-7034

In open-webui version 0.3.8, the endpoint /models/upload is vulnerable to arbitrary file write due to improper handling of user-supplied filenames. The vulnerability arises from the usage of filepath = f"UPLOADDIR/file.filename" without proper input validation or sanitization. An attacker can...

7.2CVSS0.02458EPSS

NVD•added 2025/03/20 10:15 a.m.•7 views

CVE-2024-7035

In version v0.3.8 of open-webui/open-webui, sensitive actions such as deleting and resetting are performed using the GET method. This vulnerability allows an attacker to perform Cross-Site Request Forgery CSRF attacks, where an unaware user can unintentionally perform sensitive actions by simply...

6.9CVSS0.00234EPSS

NVD•added 2025/03/20 10:15 a.m.•7 views

CVE-2024-7036

A vulnerability in open-webui/open-webui v0.3.8 allows an unauthenticated attacker to sign up with excessively large text in the 'name' field, causing the Admin panel to become unresponsive. This prevents administrators from performing essential user management actions such as deleting, editing, ...

7.5CVSS0.00799EPSS

NVD•added 2025/03/20 10:15 a.m.•8 views

CVE-2024-7039

8.3CVSS0.00647EPSS

NVD•added 2025/03/20 10:15 a.m.•8 views

CVE-2024-7040

In version v0.3.8 of open-webui/open-webui, there is an improper access control vulnerability. On the frontend admin page, administrators are intended to view only the chats of non-admin members. However, by modifying the userid parameter, it is possible to view the chats of any administrator,...

4.9CVSS0.00562EPSS

NVD•added 2025/03/20 10:15 a.m.•7 views

CVE-2024-7043

8.8CVSS0.00563EPSS

NVD•added 2025/03/20 10:15 a.m.•5 views

CVE-2024-7044

8.9CVSS0.00477EPSS

NVD•added 2025/03/20 10:15 a.m.•6 views

CVE-2024-7045

In version v0.3.8 of open-webui/open-webui, improper access control vulnerabilities allow an attacker to view any prompts. The application does not verify whether the attacker is an administrator, allowing the attacker to directly call the /api/v1/prompts/ interface to retrieve all prompt...

4.3CVSS0.00401EPSS