GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
158,245 advisories
Open WebUI: Authenticated users can bypass model access control via exposed query parameter [AI-ASSISTED]
Moderate
CVE-2026-45365
was published
for
open-webui
(pip)
May 14, 2026
Open WebUI Exposes System Prompt to Regular User [Non-Admin]
Moderate
CVE-2026-45351
was published
for
open-webui
(pip)
May 14, 2026
Open WebUI vulnerable to blind server side request forgery (SSRF) via the PDF generate function
Moderate
CVE-2026-45347
was published
for
open-webui
(pip)
May 14, 2026
Open WebUI Has Stored Cross-Site Scripting in SVG Renderer
Moderate
CVE-2026-45346
was published
for
open-webui
(npm)
May 14, 2026
Open WebUI missing authorization check at the model update function - models from other users can be updated
Moderate
CVE-2026-45345
was published
for
open-webui
(pip)
May 14, 2026
Open WebUI's API key endpoint restrictions bypassed via `x-api-key` header — full message processing on restricted endpoints
Moderate
CVE-2026-45339
was published
for
open-webu
(pip)
May 14, 2026
Svelte SSR vulnerable to cross-site scripting via spread attributes
Moderate
CVE-2026-42599
was published
for
svelte
(npm)
May 14, 2026
Open WebUI Vulnerable to Cross-Site Request Forgery (CSRF) via Image URL Manipulation
Moderate
CVE-2026-45317
was published
for
open-webui
(pip)
May 14, 2026
Open WebUI has stored XSS via unsanitized Office/Excel/DOCX file preview rendering ({@html} without DOMPurify)
Moderate
CVE-2026-45318
was published
for
open-webui
(pip)
May 14, 2026
pyLoad Has Incomplete Fix for CVE-2026-33509 -storage_folder Bypass via Session Directory in pyLoad
Moderate
CVE-2026-45306
was published
for
pyload-ng
(pip)
May 14, 2026
Home Assistant MCP Server: YAML config backups written under www/ are served unauthenticated at /local/
Moderate
GHSA-g39v-cvjh-8fpf
was published
for
ha-mcp
(pip)
May 14, 2026
Open WebUI has Stored Cross-Site Scripting In Profile Picture
Moderate
CVE-2026-45299
was published
for
open-webui
(pip)
May 14, 2026
dbt MCP Server has an Argument Injection in dbt CLI Tool Wrappers via node_selection and resource_type Parameters
Moderate
CVE-2026-44968
was published
for
dbt-mcp
(pip)
May 14, 2026
ProTip!
Advisories are also available from the
GraphQL API