Lucene search
K

1276 matches found

CVE
CVE
added 3 days ago8 views

CVE-2026-59214

Open WebUI (self-hosted AI platform) is affected by a vulnerability described as a stored web worker XSS via Pyodide. Prior to version 0.10.0, the platform runs client-side Python with Pyodide inside a same-origin web worker, which could allow stored chat payloads using pyodide.http.pyfetch or th...

9CVSS6.1AI score0.00285EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 3 days ago30 views

CVE-2026-59214 Open WebUI: Stored web worker XSS via Pyodide

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, Open WebUI runs client-side Python with Pyodide in a same-origin web worker, allowing stored chat payloads that use pyodide.http.pyfetch or the js module fetch and XMLHttpRequest APIs to issue...

7.3CVSS0.00285EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 3 days ago6 views

CVE-2026-59214

Open WebUI is an extensible, feature-rich, and user-friendly self-hosted AI platform. Prior to 0.10.0, Open WebUI runs client-side Python with Pyodide in a same-origin web worker, allowing stored chat payloads that use pyodide.http.pyfetch or the js module fetch and XMLHttpRequest APIs to issue...

7.3CVSS6.1AI score0.00285EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 3 days ago7 views

PT-2026-56832

Name of the Vulnerable Software and Affected Versions Open WebUI versions 0.6.16 through 0.9.x Description The Socket.IO server is configured with always connect=True, which allows the ydoc:awareness:update and ydoc:document:leave Socket.IO handlers to accept collaborative-document events without...

6.5CVSS6.1AI score0.00222EPSS
Exploits1References8
Positive Technologies
Positive Technologies
added 3 days ago5 views

PT-2026-56884

Name of the Vulnerable Software and Affected Versions Open WebUI versions 0.9.0 through 0.9.x Description When Redis is configured, the authentication process for Socket.IO connect, user-join, join-channels, join-note, and the terminal websocket first-message uses the decode token function withou...

7.1CVSS6.1AI score0.00259EPSS
Exploits1References7
EUVD
EUVD
added 5 days ago11 views

EUVD-2026-22188

Open WebUI has Blind Server Side Request Forgery in its Image Edit Functionality...

4.3CVSS5.9AI score0.00227EPSS
Exploits1References2
EUVD
EUVD
added 5 days ago6 views

EUVD-2025-13498

Open WebUI vulnerable to stored XSS via unescaped markdown token in MarkdownTokens.svelte leading to full account takeover and RCE via functions...

6.4CVSS5.9AI score0.00449EPSS
Exploits1References5
EUVD
EUVD
added 2026/07/01 12:34 a.m.9 views

EUVD-2026-40451

Open WebUI before 0.6.27 contains a server-side request forgery vulnerability in the /api/v1/retrieval/process/web endpoint that allows authenticated users to bypass SSRF protections. Attackers can manipulate URL parameters with location redirect headers to access internal services and potentiall...

5.3CVSS5.8AI score0.0032EPSS
Exploits0References4
NVD
NVD
added 2026/06/30 11:17 p.m.5 views

CVE-2026-56399

Open WebUI before 0.6.27 contains a server-side request forgery vulnerability in the /api/v1/retrieval/process/web endpoint that allows authenticated users to bypass SSRF protections. Attackers can manipulate URL parameters with location redirect headers to access internal services and potentiall...

5.3CVSS0.0032EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/06/30 10:8 p.m.24 views

CVE-2026-56399 Open WebUI - Server-Side Request Forgery via Location Redirect in /api/v1/retrieval/process/web

Open WebUI before 0.6.27 contains a server-side request forgery vulnerability in the /api/v1/retrieval/process/web endpoint that allows authenticated users to bypass SSRF protections. Attackers can manipulate URL parameters with location redirect headers to access internal services and potentiall...

5.3CVSS0.0032EPSS
Exploits0References3
CVE
CVE
added 2026/06/30 10:8 p.m.12 views

CVE-2026-56399

Open WebUI (pre-0.6.27) contains a server-side request forgery in the /api/v1/retrieval/process/web endpoint. The vulnerability allows authenticated users to bypass SSRF protections by manipulating URL parameters with location redirect headers, enabling access to internal services and potentially...

5.3CVSS5.8AI score0.0032EPSS
Exploits0References3
Chainguard
Chainguard
added 2026/06/26 8:23 p.m.7 views

GHSA-M2V9-299J-RV96 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/06/26 8:23 p.m.9 views

GHSA-GR75-JV2W-4656 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/06/26 8:23 p.m.9 views

CVE-2026-54531 vulnerabilities

Vulnerabilities for packages: open-webui...

6.9CVSS5.8AI score0.00123EPSS
Exploits0
Chainguard
Chainguard
added 2026/06/26 8:23 p.m.8 views

GHSA-52X6-GQ3R-VPF4 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Chainguard
Chainguard
added 2026/06/26 8:23 p.m.9 views

CVE-2026-54530 vulnerabilities

Vulnerabilities for packages: open-webui...

6.9CVSS5.8AI score0.00123EPSS
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.10 views

GHSA-RRMF-RVHW-RF47 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.10 views

CVE-2025-3000 vulnerabilities

Vulnerabilities for packages: open-webui...

5.3CVSS6AI score0.00183EPSS
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.9 views

GHSA-M2V9-299J-RV96 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.6 views

GHSA-JM82-FX9C-MX94 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Rows per page
Query Builder