Lucene search
K

2990 matches found

NVD
NVD
added 2026/05/15 9:16 p.m.17 views

CVE-2026-45385

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.5, an IDOR vulnerability exists in the Channels feature of Open WebUI, allowing any channel member to modify messages sent by other members including administrators within the same...

4.3CVSS0.00204EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 9:15 p.m.5 views

CVE-2026-45346

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.31, there is a Cross-Site Scripting vulnerability in Open WebUI SVG renderer implementation. This vulnerability is fixed in 0.6.31...

5.1CVSS5.8AI score0.00165EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 9:15 p.m.10 views

CVE-2026-45346 Open WebUI: Stored Cross-Site Scripting in SVG Renderer

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.31, there is a Cross-Site Scripting vulnerability in Open WebUI SVG renderer implementation. This vulnerability is fixed in 0.6.31...

5.1CVSS5.8AI score0.00165EPSS
Exploits1References1
CVE
CVE
added 2026/05/15 9:15 p.m.19 views

CVE-2026-45346

Open WebUI (self-hosted offline AI platform) prior to version 0.6.31 contains a stored Cross‑Site Scripting (XSS) vulnerability in its SVG renderer. The issue allows attackers to save and execute injected HTML/JavaScript in the application context, potentially leading to data exposure or manipula...

5.4CVSS5.8AI score0.00165EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/05/15 9:15 p.m.45 views

CVE-2026-45346 Open WebUI: Stored Cross-Site Scripting in SVG Renderer

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.31, there is a Cross-Site Scripting vulnerability in Open WebUI SVG renderer implementation. This vulnerability is fixed in 0.6.31...

5.1CVSS0.00165EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/15 9:15 p.m.13 views

EUVD-2026-30651

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.31, there is a Cross-Site Scripting vulnerability in Open WebUI SVG renderer implementation. This vulnerability is fixed in 0.6.31...

5.1CVSS5.8AI score0.00165EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/15 9:12 p.m.48 views

CVE-2026-45347 Open WebUI: Blind server side request forgery (SSRF) via the PDF generate function

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.5.11, there is a blind server side request forgery SSRF via the PDF generate function. In the PDF export, user inputs are interpreted as HTML and embedded into the PDF. According to tests...

4.3CVSS0.00186EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 9:12 p.m.7 views

CVE-2026-45347

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.5.11, there is a blind server side request forgery SSRF via the PDF generate function. In the PDF export, user inputs are interpreted as HTML and embedded into the PDF. According to tests...

4.3CVSS5.8AI score0.00186EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 9:12 p.m.9 views

CVE-2026-45347 Open WebUI: Blind server side request forgery (SSRF) via the PDF generate function

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.5.11, there is a blind server side request forgery SSRF via the PDF generate function. In the PDF export, user inputs are interpreted as HTML and embedded into the PDF. According to tests...

4.3CVSS5.8AI score0.00186EPSS
Exploits1References1
CVE
CVE
added 2026/05/15 9:12 p.m.16 views

CVE-2026-45347

CVE-2026-45347 concerns Open WebUI, a self-hosted offline AI platform. The vulnerability is a blind server-side request forgery (SSRF) via the PDF generate function, where user inputs embedded in the PDF are processed as HTML. Tests show most dangerous tags (e.g., iframe, object) are blocked, but...

5.4CVSS5.8AI score0.00186EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/05/15 9:9 p.m.40 views

CVE-2026-45351 Open WebUI: Exposure of System Prompt to Regular User [Non-Admin]

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.9, when a regular user non-admin logs into the application, a http://IP:8080/api/models? web request is initiated by the application and in response, it reveals the system prompt of...

6.5CVSS0.00281EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/05/15 9:9 p.m.7 views

CVE-2026-45351 Open WebUI: Exposure of System Prompt to Regular User [Non-Admin]

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.9, when a regular user non-admin logs into the application, a http://IP:8080/api/models? web request is initiated by the application and in response, it reveals the system prompt of...

6.5CVSS5.8AI score0.00281EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 9:9 p.m.7 views

CVE-2026-45351

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.9, when a regular user non-admin logs into the application, a http://IP:8080/api/models? web request is initiated by the application and in response, it reveals the system prompt of...

6.5CVSS5.8AI score0.00281EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/05/15 9:9 p.m.19 views

CVE-2026-45351

Open WebUI vulnerability CVE-2026-45351: A non-admin user could trigger a request to /api/models? and receive the system prompt of available models, revealing admin-set backend prompts and compromising confidentiality. This affects Open WebUI self-hosted offline AI platform versions prior to 0.8....

6.5CVSS5.8AI score0.00281EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/05/15 9:7 p.m.32 views

CVE-2026-45666 Open WebUI: Indirect Object Reference (IDOR) in user notes

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the API /api/v1/notes/noteid endpoint lacks proper authorization checks, allowing authenticated users to retrieve notes belonging to other users by guessing or enumerating UUIDs. Th...

6.5CVSS0.00277EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 9:7 p.m.6 views

CVE-2026-45666

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the API /api/v1/notes/noteid endpoint lacks proper authorization checks, allowing authenticated users to retrieve notes belonging to other users by guessing or enumerating UUIDs. Th...

6.5CVSS5.8AI score0.00277EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2026/05/15 9:7 p.m.19 views

CVE-2026-45666

CVE-2026-45666 — Open WebUI IDOR in notes endpoint : The API /api/v1/notes/{note_id} allowed authenticated users to read other users’ notes by guessing UUIDs prior to version 0.8.11, enabling unauthorized data disclosure. The issue is fixed in 0.8.11; per-id endpoints now enforce ownership (admin...

6.5CVSS5.8AI score0.00277EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/05/15 9:7 p.m.7 views

CVE-2026-45365 Open WebUI: Authenticated users can bypass model access control via exposed query parameter

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, an internal-only bypassfilter parameter is exposed on the /openai/chat/completions and /ollama/api/chat HTTP endpoints via FastAPI query string binding, allowing any authenticated...

5.4CVSS5.8AI score0.00193EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2026/05/15 9:7 p.m.10 views

CVE-2026-45365

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, an internal-only bypassfilter parameter is exposed on the /openai/chat/completions and /ollama/api/chat HTTP endpoints via FastAPI query string binding, allowing any authenticated...

5.4CVSS5.8AI score0.00193EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/05/15 9:7 p.m.11 views

EUVD-2026-30649

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, an internal-only bypassfilter parameter is exposed on the /openai/chat/completions and /ollama/api/chat HTTP endpoints via FastAPI query string binding, allowing any authenticated...

5.4CVSS5.8AI score0.00193EPSS
Exploits1References1
Rows per page
Query Builder