Vulnerabilities > Openwebui > Open Webui > 0.2.3

DATE CVE VULNERABILITY TITLE RISK
2025-03-20 CVE-2024-7806 Unspecified vulnerability in Openwebui Open Webui
A vulnerability in open-webui/open-webui versions <= 0.3.8 allows remote code execution by non-admin users via Cross-Site Request Forgery (CSRF).
network
low complexity
openwebui
8.8
8.8