1 results (0.001 seconds)
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2024-30256 – Open WebUI vulnerable to server-side request forgery in utils.py
https://notcve.org/view.php?id=CVE-2024-30256
16 Apr 2024 — Open WebUI is a user-friendly WebUI for LLMs. Open-webui is vulnerable to authenticated blind server-side request forgery. This vulnerability is fixed in 0.1.117. Open WebUI es una WebUI fácil de usar para LLM. Open-webui es vulnerable a blind server-side request forgery. • https://github.com/open-webui/open-webui/security/advisories/GHSA-39wr-r5vm-3jxj • CWE-918: Server-Side Request Forgery (SSRF) •