CVE-2026-44721 | THREATINT

Description

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.0, a stored cross-site scripting (XSS) vulnerability that allows any authenticated user with model creation permission (workspace.models) to execute arbitrary JavaScript in the browser of any other user (including admins) who views the malicious model in the chat UI. This vulnerability is fixed in 0.9.0.

PUBLISHED Reserved 2026-05-07 | Published 2026-05-15 | Updated 2026-05-19 | Assigner GitHub_M

HIGH: 7.3CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Problem types

CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Product status

< 0.9.0

affected

References

github.com/...-webui/security/advisories/GHSA-gf5m-wcrh-7928 exploit

github.com/...-webui/security/advisories/GHSA-gf5m-wcrh-7928

cve.org (CVE-2026-44721)

nvd.nist.gov (CVE-2026-44721)

Download JSON