open-webui vulnerabilities

Browse known CVEs and advisories by package and ecosystem. Severity tells you the worst case. What determines real risk is whether the vulnerable code actually runs in your applications.

Get a demo

Browse by ecosystem

npmPyPIMavenGoRubyGemsCargoNuGetComposerpubSwiftGitHub Actions
CVE-IDSeverityPackage summary
CVE-2024-7039Highopen-webui: Open WebUI Allows Admin Deletion via API EndpointCVE-2024-7036Highopen-webui: Open WebUI Uncontrolled Resource Consumption vulnerabilityCVE-2024-7043Highopen-webui: Open WebUI Allows Arbitrary File Reading and DeletionCVE-2024-7034Mediumopen-webui: Open WebUI Allows Arbitrary File Write via the `/models/upload` EndpointGHSA-W466-2WFC-8G58Highopen-webui: Open WebUI has vulnerable dependency on starlette via fastapiCVE-2024-12537Highopen-webui: Open WebUI Uncontrolled Resource Consumption vulnerabilityCVE-2024-12534Highopen-webui: Open WebUI Uncontrolled Resource Consumption vulnerabilityCVE-2024-7037Mediumopen-webui: open-webui allows writing and deleting arbitrary filesCVE-2024-7041Mediumopen-webui: open-webui Insecure Direct Object Reference (IDOR) vulnerabilityCVE-2024-7038Lowopen-webui: open-webui allows enumeration of file names and traversal of directories by observing the error…CVE-2024-6706Mediumopen-webui: Open WebUI Stored Cross-Site Scripting Vulnerability

Stop the waste.
Protect your environment with Kodem.