Open webui
This hub aggregates every CVE we track for Open webui, a product in the ai ml space. Use it to gauge the current risk picture and drill into individual advisories.
106
CVEs tracked
3
Critical
54
High
0
In CISA KEV
Severity distribution
HIGH54MEDIUM45LOW4CRITICAL3
Monthly trend
0
2
0
5
0
0
0
0
19
1
2
0
0
0
0
0
2
4
3
2
4
2
59
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Open webui.
- CVE-2026-45338Open WebUI: SSRF via OAuth Profile Picture URL in _process_picture_url (oauth.py)7.7
- CVE-2026-44549Open WebUI: Stored XSS in excel file preview7.3
- CVE-2026-45299Open WebUI: Stored Cross-Site Scripting In Profile Picture5.4
- CVE-2026-45665Open WebUI: Stored XSS in Banner Component via Improper Sanitization Order8.1
- CVE-2026-45667Open WebUI: Unauthenticated endpoint can trigger embedding generation (cost/DoS)6.5
- CVE-2026-44565Open WebUI: Open WebUI Arbitrary File Write, Delete via Path Traversal8.1
- CVE-2026-45314Open WebUI: XSS via SVG in /api/v1/channels/webhooks/{webhook_id}/profile/image6.1
- CVE-2026-45316Open WebUI: Read-Only Users Can Toggle Note Pin Status via Incorrect Permission Check (Write via Read-Only Access)3.5
- CVE-2026-45317Open WebUI: Cross-Site Request Forgery (CSRF) via Image URL Manipulation4.6
- CVE-2026-45318Open WebUI: Stored XSS via unsanitized Office/Excel/DOCX file preview rendering ({@html} without DOMPurify)5.4
- CVE-2026-45315Open WebUI: Stored XSS via attacker-controlled file extension in /api/v1/audio/transcriptions8.7
- CVE-2026-44571Open WebUI: Improper Authorization in Standard Channels Allows Message Updates with Read Permission6.5
- CVE-2026-45350Open WebUI: Chat completion API allows tool restrictions to be bypassed7.1
- CVE-2026-45303Open WebUI: Stored XSS via the HTML renedering view7.7
- CVE-2026-45301Open WebUI: Missing permission check in files API allows authenticated users to list, access and delete every uploaded file8.1
Product normalization is registry-driven with AI assist and human review. How it works