Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.4
Open WebUI: Unsecured Chat History Allows Malicious Link Sharing
CVE-2026-26193
Summary
A security issue in Open WebUI's chat history feature allows hackers to create a malicious link that can be shared with other users, potentially leading to cross-site scripting (XSS) attacks. This affects all versions of Open WebUI prior to 0.6.44. Update to version 0.6.44 or later to fix this issue.
What to do
No fix is available yet. Check with your software vendor for updates.
Affected software
| Vendor | Product | Affected versions | Fix available |
|---|---|---|---|
| openwebui | open_webui | <= 0.6.44 | – |
Original title
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.6.44, aanually modifying chat history allows setting the `embeds` property on a...
Original description
Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.6.44, aanually modifying chat history allows setting the `embeds` property on a response message, the content of which is loaded into an iFrame with a sandbox that has `allow-scripts` and `allow-same-origin` set, ignoring the "iframe Sandbox Allow Same Origin" configuration. This enables stored XSS on the affected chat. This also triggers when the chat is in the shared format. The result is a shareable link containing the payload that can be distributed to any other users on the instance. Version 0.6.44 fixes the issue.
nvd CVSS3.1
5.4
Vulnerability type
CWE-79
Cross-site Scripting (XSS)
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026