AI Threat Alert

Open WebUI Vulnerabilities

pip ML UI
38
Risk Score
92
Total CVEs
1
Critical
pip
Ecosystem
May 14, 2026
Last CVE
74%
Patch Rate
4d
Avg Time to Patch
137,383 stars 19,613 forks 302 issues Last push May 15, 2026
View on GitHub

Known Vulnerabilities (92 total, page 1 of 4)

Severity CVE ID Summary CVSS Published
HIGH CVE-2026-45665 open-webui: Stored XSS enables Super Admin session hijack 8.1 May 14, 2026 MEDIUM CVE-2026-45299 open-webui: Stored SVG XSS enables admin JWT theft 5.4 May 14, 2026 HIGH CVE-2026-45301 open-webui: BOLA exposes all users' uploaded files 8.1 May 14, 2026 HIGH CVE-2026-45303 Open WebUI: XSS iframe allows auth token exfiltration 7.7 May 14, 2026 HIGH CVE-2026-45315 open-webui: stored XSS → JWT theft and admin takeover 8.7 May 14, 2026 HIGH CVE-2026-45314 Open WebUI: Stored XSS via webhook SVG profile image -- May 14, 2026 LOW CVE-2026-45316 Open WebUI: read users can modify note pin state 3.5 May 14, 2026 MEDIUM CVE-2026-45318 open-webui: Stored XSS via Office file preview bypass 5.4 May 14, 2026 MEDIUM CVE-2026-45317 Open-WebUI: CSRF image URL leaks session cookies 4.6 May 14, 2026 HIGH CVE-2026-45331 open-webui: SSRF bypass exposes cloud IAM credentials 8.5 May 14, 2026 HIGH CVE-2026-45338 open-webui: SSRF via OAuth picture claim leaks internal data 7.7 May 14, 2026 MEDIUM CVE-2026-45339 Open WebUI: API key restriction bypass via header swap 6.5 May 14, 2026 MEDIUM CVE-2026-45345 open-webui: IDOR allows unauthorized model modification 6.5 May 14, 2026 MEDIUM CVE-2026-45347 Open WebUI: blind SSRF via PDF export HTML injection 4.3 May 14, 2026 HIGH CVE-2026-45349 open-webui: auth bypass exposes all user chat histories 7.1 May 14, 2026 HIGH CVE-2026-45350 open-webui: missing authz allows admin tool hijacking 7.1 May 14, 2026 MEDIUM CVE-2026-45351 Open WebUI: admin system prompts exposed to all users 6.5 May 14, 2026 MEDIUM CVE-2026-45365 open-webui: auth bypass exposes admin-restricted models 5.4 May 14, 2026 MEDIUM CVE-2026-45385 Open WebUI: IDOR lets members tamper with admin messages 4.3 May 14, 2026 MEDIUM CVE-2026-45386 open-webui: auth bypass lets read-only users pin messages 4.3 May 14, 2026 MEDIUM CVE-2026-45387 open-webui: system prompt leakage via model read API 4.3 May 14, 2026 MEDIUM CVE-2026-45396 open-webui: mass assignment enables leaderboard poisoning 5.4 May 14, 2026 MEDIUM CVE-2026-45397 Open WebUI: unauthenticated RAG config leaks AI pipeline 5.3 May 14, 2026 HIGH CVE-2026-45398 open-webui: IDOR exposes private RAG knowledge bases 7.5 May 14, 2026 HIGH CVE-2026-45399 Open WebUI: task auth bypass enables cross-user DoS 7.1 May 14, 2026

Showing 1–25 of 92

Next →

Monitor Open WebUI in your stack

Get instant alerts when new vulnerabilities affect Open WebUI. CISO analysis, ATLAS technique mappings, and compliance reports included.

Start Monitoring