Open Webui vulnerabilities
5 known vulnerabilities affecting open_webui/open_webui.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2026-0766P2HIGHCVSS 8.8v0.6.322026-01-23
CVE-2026-0766 [HIGH] CWE-94 CVE-2026-0766: Open WebUI load_tool_module_by_id Command Injection Remote Code Execution Vulnerability. This vulner
Open WebUI load_tool_module_by_id Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open WebUI. Authentication is required to exploit this vulnerability.
The specific flaw exists within the load_tool_module_by_id function. The issue results from the la
nvd
CVE-2026-0765P2HIGHCVSS 8.8v0.6.322026-01-23
CVE-2026-0765 [HIGH] CWE-78 CVE-2026-0765: Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerabilit
Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open WebUI. Authentication is required to exploit this vulnerability.
The specific flaw exists within the install_frontmatter_requirements function.The is
nvd
CVE-2024-6707P3HIGHCVSS 8.8v0.1.1052024-08-07
CVE-2024-6707 [HIGH] CWE-22 CVE-2024-6707: Attacker controlled files can be uploaded to arbitrary locations on the web server's filesystem by a
Attacker controlled files can be uploaded to arbitrary locations on the web server's filesystem by abusing a path traversal vulnerability.
nvd
CVE-2026-0767P4MEDIUMCVSS 6.5v0.6.322026-01-23
CVE-2026-0767 [MEDIUM] CWE-319 CVE-2026-0767: Open WebUI Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerab
Open WebUI Cleartext Transmission of Credentials Information Disclosure Vulnerability. This vulnerability allows network-adjacent attackers to disclose sensitive information on affected installations of Open WebUI. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the handling of credentials provided to the
nvd
CVE-2024-6706P4MEDIUMCVSS 6.1v0.1.1052024-08-07
CVE-2024-6706 [MEDIUM] CWE-79 CVE-2024-6706: Attackers can craft a malicious prompt that coerces the language model into executing arbitrary Java
Attackers can craft a malicious prompt that coerces the language model into executing arbitrary JavaScript in the context of the web page.
nvd