Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

open-webui — Vulnerabilities & Security Advisories 40

Browse all 40 CVE security advisories affecting open-webui. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Top products by open-webui:open-webui/open-webuiopen-webui
CVE IDTitleCVSSSeverityPublished
CVE-2024-7046 Improper Access Control in open-webui/open-webui — open-webui/open-webuiCWE-862 5.3 -2025-03-20
CVE-2024-12537 Unauthenticated Denial of Service in open-webui/open-webui — open-webui/open-webuiCWE-770 7.5 -2025-03-20
CVE-2024-7959 SSRF in open-webui/open-webui — open-webui/open-webuiCWE-918 9.8 -2025-03-20
CVE-2024-7990 Stored Cross-Site Scripting in open-webui/open-webui — open-webui/open-webuiCWE-79 5.4 -2025-03-20
CVE-2024-7049 Exposure of Token in open-webui/open-webui — open-webui/open-webuiCWE-488 8.1AIHighAI2024-10-10
CVE-2024-7048 IDOR in open-webui/open-webui — open-webui/open-webuiCWE-863 8.8AIHighAI2024-10-10
CVE-2024-7041 IDOR in open-webui/open-webui — open-webui/open-webuiCWE-639 4.3AIMediumAI2024-10-09
CVE-2024-7037 Arbitrary File Write/Delete Leading to RCE in open-webui/open-webui — open-webui/open-webuiCWE-22 9.8AICriticalAI2024-10-09
CVE-2024-7038 Information Disclosure in open-webui/open-webui — open-webui/open-webuiCWE-209 6.5AIMediumAI2024-10-09
CVE-2024-30256 Open WebUI vulnerable to server-side request forgery in utils.py — open-webuiCWE-918 6.4 Medium2024-04-16

This page lists every published CVE security advisory associated with open-webui. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.