CVE-2026-45303

Open WebUI · Open WebUI

A Cross-site Scripting (XSS) vulnerability in the Open WebUI platform allows attackers to execute arbitrary scripts in the context of an authenticated user's browser session.

Executive summary

A critical XSS vulnerability in Open WebUI could allow an attacker to hijack user sessions or perform unauthorized actions within the AI interface.

Vulnerability

This is a Cross-site Scripting (CWE-79) vulnerability occurring during web page generation. An attacker with low-level privileges can inject malicious scripts that execute in the browser of a victim, potentially leading to total technical impact.

Business impact

Successful exploitation allows for the theft of session tokens, unauthorized access to sensitive AI chat history, or the performance of actions on behalf of the user. With a CVSS score of 7.7, the risk of data compromise and unauthorized platform activity is high, particularly in collaborative or multi-user environments.

Remediation

Immediate Action: Update the Open WebUI package to version 0.6.5 or later immediately.

Proactive Monitoring: Audit logs for suspicious script injections or unusual user behavior originating from within the platform's interface.

Compensating Controls: Utilize a Content Security Policy (CSP) to restrict the execution of unauthorized scripts and employ a WAF to filter malicious inputs.

Exploitation status

Public Exploit Available: No (unknown)

Analyst recommendation

Security teams must prioritize the update to version 0.6.5. This vulnerability poses a significant risk to user data privacy and session integrity; failure to patch leaves the platform exposed to potential account takeover and information disclosure.