Vulnerabilities in open-webui
115 resultsCVE-2026-45331HIGHOpen WebUI: Full SSRF Vulnerability in the RAG Web Search FeatureEPSS 0.3%CVE-2026-44553HIGHOpen WebUI: Stale Admin Role in Socket.IO Session Pool Enables Post-Demotion Cross-User Note AccessEPSS 0.3%CVE-2026-45351MEDIUMOpen WebUI: Exposure of System Prompt to Regular User [Non-Admin]EPSS 0.3%CVE-2026-54019MEDIUMOpen WebUI: RAG ACL Bypass in Milvus Multitenancy ModeEPSS 0.3%CVE-2026-45666MEDIUMOpen WebUI: Indirect Object Reference (IDOR) in user notesEPSS 0.3%CVE-2026-44571MEDIUMOpen WebUI: Improper Authorization in Standard Channels Allows Message Updates with Read PermissionEPSS 0.3%CVE-2026-45301HIGHOpen WebUI: Missing permission check in files API allows authenticated users to list, access and delete every uploaded fileEPSS 0.3%CVE-2026-45671HIGHOpen WebUI: shared-chat branch ignores access_type, allowing unauthorized file deletionEPSS 0.3%CVE-2026-45399HIGHOpen WebUI: Low-privilege authenticated users can enumerate and stop global background tasks, causing system-wide chat disruptionEPSS 0.3%CVE-2026-54022MEDIUMOpen WebUI: Any authenticated user can read other users' private notes via Socket.IOEPSS 0.3%CVE-2026-44569HIGHOpen WebUI: Insecure Message Access Breaks AuthorizationEPSS 0.3%CVE-2026-45350HIGHOpen WebUI: Chat completion API allows tool restrictions to be bypassedEPSS 0.3%CVE-2026-29071LOWOpen WebUI's Insecure Direct Object Reference (IDOR) allows access to other users' memoriesEPSS 0.3%CVE-2026-29070MEDIUMOpen WebUI has unauthorized deletion of knowledge filesEPSS 0.3%CVE-2026-44555HIGHOpen WebUI: Base Model Routing Bypasses Access Control via Model ChainingEPSS 0.2%CVE-2026-54014MEDIUMOpen WebUI: Sibling-Prefix Path Traversal via /cache/{path} in open-webui/open-webuiEPSS 0.2%CVE-2026-54010HIGHOpen WebUI: Forged chat-file link allows cross-user file read and deletionEPSS 0.2%CVE-2026-44563MEDIUMOpen WebUI: Ollama Model Access Control Bypass via /api/generate, /api/embed, /api/embeddings, and /api/showEPSS 0.2%CVE-2024-7035MEDIUMCross-Site Request Forgery (CSRF) in open-webui/open-webuiEPSS 0.2%CVE-2026-45349HIGHOpen WebUI: Broken Access Control for Completions APIEPSS 0.2%