Summary
Open WebUI Prompt history IDOR: unbound history_id allows cross-prompt read and deletion
References
Related vulnerabilities
All Supply chain →- HIGHGHSA-VRHC-3FR6-PC3C
Open WebUI: Forged chat-file link allows cross-user file read and deletion
- CRITICALGHSA-8FQ9-273G-6MRG
Avo: Missing Authorization in Avo Association Attach Endpoint Allows Unauthorized Relationship Manipulation and Privilege Escalation
- MEDIUMGHSA-QWXF-2M7M-2M3X
Daytona: Cross-tenant data leak in notification WebSocket gateway via unverified organizationId join
- HIGHGHSA-VJQM-6GCC-62CR
Open WebUI: Forged model meta.knowledge allows cross-user file read and deletion
- MEDIUMGHSA-WCH8-MHJ5-9FRG
Open WebUI: Cross-user file disclosure via /api/chat/completions image_url field
- MEDIUMGHSA-F3G7-59QC-PQG6
Open WebUI IDOR: Calendar event re-parenting allows writing events into another user's calendar