Lucene search
K

2992 matches found

Wolfi
Wolfi
added 2026/06/26 8:22 p.m.9 views

GHSA-M2V9-299J-RV96 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.5 views

GHSA-JM82-FX9C-MX94 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.5 views

GHSA-GR75-JV2W-4656 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.7 views

CVE-2025-3000 vulnerabilities

Vulnerabilities for packages: open-webui...

5.3CVSS6AI score0.00183EPSS
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.6 views

GHSA-52X6-GQ3R-VPF4 vulnerabilities

Vulnerabilities for packages: open-webui...

5.8AI score
Exploits0
Wolfi
Wolfi
added 2026/06/26 8:22 p.m.7 views

CVE-2026-54530 vulnerabilities

Vulnerabilities for packages: open-webui...

6.9CVSS5.8AI score0.00123EPSS
Exploits0
NVD
NVD
added 2026/06/23 6:18 p.m.8 views

CVE-2026-54021

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, several direct, index-addressed Ollama proxy routes accept a caller-supplied urlidx path parameter and use it as a raw index into the admin-configured OLLAMABASEURLS list. Access...

6.3CVSS0.0021EPSS
Exploits0References1
NVD
NVD
added 2026/06/23 6:18 p.m.8 views

CVE-2026-54018

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the SafePlaywrightURLLoader implements a validateurl function to prevent SSRF attacks by checking the IP address of the user-provided URL. However, this validation is performed only ...

7.7CVSS0.00287EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.8 views

CVE-2026-54019

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI added collection-level ACL checks, but the patch can still be bypassed when Milvus multitenancy mode is enabled. The ACL allows unknown non-KB collection names as...

6.5CVSS0.00281EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.8 views

CVE-2026-54022

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.8.11, the ydoc:document:join Socket.IO handler checks note ownership only when the documentid starts with note: colon. However, the YdocManager storage layer normalizes all document IDs b...

5.3CVSS0.00268EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.16 views

CVE-2026-54009

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/chat/completions accepts an imageurl.url value that, when it does NOT start with http://, https://, or data:image/, is interpreted as a file id and resolved against the...

6.5CVSS0.00225EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.17 views

CVE-2026-54010

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets an authenticated user attach arbitrary fileid values to their own chat message without checking whether they own or can read those files. If the attacker then shares...

8.3CVSS0.00241EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.7 views

CVE-2026-54012

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI lets a user who can create, update, or import workspace models store arbitrary meta.knowledge entries on their model without checking whether they own or can read the...

7.1CVSS0.00198EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.16 views

CVE-2026-54015

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI's prompt version-history endpoints authorize the promptid in the URL but then act on caller-supplied history IDs without verifying that the history row belongs to that...

6.4CVSS0.00169EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.15 views

CVE-2026-54016

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, Open WebUI has a Broken Object Level Authorization BOLA vulnerability in the builtin searchknowledgefiles tool. When native function calling is enabled and the selected model has no...

4.3CVSS0.00226EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.7 views

CVE-2026-54007

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, the chat message listener allows non-same-origin input:prompt and action:submit messages, so an external site can set prompt text and trigger submitPrompt in an authenticated victim...

7.1CVSS0.00162EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.10 views

CVE-2026-54006

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/v1/calendars/events/eventid/update validates that the caller has write access to the calendar the event currently belongs to, but does not validate the destination calendar...

4.3CVSS0.00179EPSS
Exploits1References1
NVD
NVD
added 2026/06/23 6:18 p.m.9 views

CVE-2026-54008

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, backend/openwebui/utils/oauth.py::processpictureurl calls validateurlpictureurl on the initial URL only, then invokes aiohttp.ClientSession.getpictureurl, ... without...

8.5CVSS0.00203EPSS
Exploits1References1
CVE
CVE
added 2026/06/23 4:51 p.m.18 views

CVE-2026-54007

CVE-2026-54007 describes a cross-origin postMessage bypass in Open WebUI prior to version 0.9.6. The root cause is a chat input/submit flow in the Chat.svelte window message listener that accepts non-same-origin messages (input:prompt and action:submit) and forwards them to submitPrompt(), enabli...

7.1CVSS5.8AI score0.00162EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/06/23 4:50 p.m.38 views

CVE-2026-54006 Open WebUI: Calendar event re-parenting allows writing events into another user's calendar

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/v1/calendars/events/eventid/update validates that the caller has write access to the calendar the event currently belongs to, but does not validate the destination calendar...

4.3CVSS0.00179EPSS
Exploits1References1
Rows per page
Query Builder