Package impact
PIP / open-webui
| CVE | Severity | CVSS | Risk | Flags | OS | Vendor | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-44566 | critical | 9.8 | 9.8 | 19d ago | Open WebUI Vulnerable to Arbitrary File Upload and Path Traversal | |||
| CVE-2026-44551 | critical | 9.1 | 9.1 | 26d ago | Open WebUI has an LDAP Empty Password Authentication Bypass |