CVE-2026-44721 | Open-WebUI 0.5.16/0.6.33 Model Description cross site scripting

Inserito da Angelo Barbosa | Mag 9, 2026 | CVE

A vulnerability has been found in Open-WebUI 0.5.16/0.6.33 and classified as problematic. This issue affects some unknown processing of the component Model Description Handler. Performing a manipulation results in cross site scripting.

This vulnerability is identified as CVE-2026-44721. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.

CVE-2026-44721 | Open-WebUI 0.5.16/0.6.33 Model Description cross site scripting

Post correlati

CVE-2024-13542 | pagup WP Google Street View & Google maps and Local SEO Plugin Shortcode wpgsv cross site scripting

CVE-2024-34147 | Telegram Bot Plugin up to 1.4.0 on Jenkins Controller File System missing encryption

CVE-2024-37300 | jupyterhub oauthenticator up to 16.3.0 authorization (GHSA-gprj-3p75-f996)

CVE-2024-37938 | MyThemeShop SociallyViral Plugin up to 1.0.10 on WordPress cross-site request forgery