CVE-2024-30256 | Open WebUI up to 0.1.116 server-side request forgery (GHSA-39wr-r5vm-3jxj)

Posted by Angelo Barbosa | Apr 16, 2024 | CVE

A vulnerability classified as critical has been found in Open WebUI up to 0.1.116. Affected is an unknown function. The manipulation leads to server-side request forgery.

This vulnerability is traded as CVE-2024-30256. It is possible to launch the attack remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-30256 | Open WebUI up to 0.1.116 server-side request forgery (GHSA-39wr-r5vm-3jxj)

Related Posts

CVE-2024-28556 | SourceCodester PHP Task Management System 1.0 admin-manage-user.php sql injection

CVE-2024-0415 | DeShang DSMall up to 6.1.0 Image URL TaobaoExport.php access control

CVE-2024-26581 | Linux Kernel up to 6.1.77/6.6.16/6.7.4/6.8-rc3 Netfilter nft_set_rbtree.c nft_set_rbtree Privilege Escalation

CVE-2024-34989 | RSI PDF HTML Catalog Evolution Module up to 7.0.0 on PrestaShop queryDb sql injection