Vulnerabilidades en open-webui
115 resultadosCVE-2026-44567HIGHOpen WebUI: Open WebUI Improper Authorization ControlEPSS 0.2%CVE-2026-34225MEDIUMOpen WebUI has Blind Server Side Request Forgery in its Image Edit FunctionalityEPSS 0.2%CVE-2026-45345MEDIUMOpen WebUI: Missing authorization check at the model update function - models from other users can be updatedEPSS 0.2%CVE-2026-54016MEDIUMOpen WebUI: Open WebUI BOLA: `search_knowledge_files` Allows Unauthorized Knowledge Base File EnumerationEPSS 0.2%CVE-2026-54009MEDIUMOpen WebUI: Cross-user file disclosure via /api/chat/completions image_url fieldEPSS 0.2%CVE-2026-44557MEDIUMOpen WebUI: Global Knowledge Base Enumeration via knowledge-bases Meta-CollectionEPSS 0.2%CVE-2026-44559MEDIUMOpen WebUI: Missing Access Check on Channel Members Endpoint for Standard ChannelsEPSS 0.2%CVE-2026-45387MEDIUMOpen WebUI: Sharing models for others to use (read permission) also exposes model details (system prompt leakage)EPSS 0.2%CVE-2026-44564MEDIUMOpen WebUI: Read-Only Users Can Modify Collaborative Documents via Socket.IOEPSS 0.2%CVE-2026-45316LOWOpen WebUI: Read-Only Users Can Toggle Note Pin Status via Incorrect Permission Check (Write via Read-Only Access)EPSS 0.2%CVE-2026-45303HIGHOpen WebUI: Stored XSS via the HTML renedering viewEPSS 0.2%CVE-2026-45314HIGHOpen WebUI: XSS via SVG in /api/v1/channels/webhooks/{webhook_id}/profile/imageEPSS 0.2%CVE-2026-54021MEDIUMOpen WebUI: Authenticated users can target arbitrary configured Ollama backends via unguarded url_idx path parameterEPSS 0.2%CVE-2026-45318MEDIUMOpen WebUI: Stored XSS via unsanitized Office/Excel/DOCX file preview rendering ({@html} without DOMPurify)EPSS 0.2%CVE-2026-45386MEDIUMOpen WebUI: An IDOR vulnerability exists in the pin_channel_message API endpointEPSS 0.2%CVE-2026-45385MEDIUMOpen WebUI: An IDOR vulnerability exists in the update_message_by_id API endpointEPSS 0.2%CVE-2026-54008HIGHOpen WebUI: Redirect-Bypass SSRF in OAuth `_process_picture_url`EPSS 0.2%CVE-2026-54011HIGHOpen WebUI: Stored XSS in Mermaid Markdown PreviewEPSS 0.2%CVE-2026-45299MEDIUMOpen WebUI: Stored Cross-Site Scripting In Profile PictureEPSS 0.2%CVE-2026-26193HIGHOpen WebUI vulnerable to Stored XSS via iFrame embeds in response messagesEPSS 0.2%