Summary
Open WebUI: Path traversal / SSRF in terminal server proxy via encoded path traversal
References
Related vulnerabilities
All Supply chain →- CRITICALGHSA-365W-HQF6-VXFG
Crawl4AI: Multiple Docker API Vulnerabilities - File Write, SSRF, Auth Bypass, XSS, JS Execution
- HIGHGHSA-R4GV-QR8J-P3PG
handlebars.java FileTemplateLoader Path Traversal
- HIGHGHSA-JRFP-M64G-PCWV
Open WebUI: SSRF Protection Bypass in Playwright Web Loader via HTTP Redirects
- MEDIUMGHSA-J2C8-V969-8R5C
Open WebUI: Sibling-Prefix Path Traversal via /cache/{path}
- HIGHGHSA-226F-F24G-524W
Open WebUI: Redirect-Bypass SSRF in OAuth `_process_picture_url` (incomplete-fix sibling of CVE-2026-45401)
- MEDIUMGHSA-HMCR-RMJQ-47QR
NocoDB: Server-Side Request Forgery via Spreadsheet Import Endpoint