CVE

CVE-2026-26192

Open WebUI vulnerable to Stored XSS via iFrame in citations model

CVE

CVE-2026-26192

Open WebUI vulnerable to Stored XSS via iFrame in citations model

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to version 0.7.0, aanually modifying chat history allows setting the html property within document metadata. This causes the frontend to enter a code path that treats document contents as HTML, and render them in an iFrame when the citation is previewed. This allows stored XSS via a weaponized document payload in a chat. The payload also executes when the citation is viewed on a shared chat. Version 0.7.0 fixes the issue.

Package Versions Affected

No items found.

Automatically patch vulnerabilities without upgrading

Fix Without Upgrading

Detect compatible fix

Apply safe remediation

Fix with a single pull request

CVSS Version

7.3

3.1

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

3.1

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N

Related Resources

No items found.

References

https://github.com/open-webui/open-webui/blob/6f1486ffd0cb288d0e21f41845361924e0d742b3/src/lib/components/chat/Messages/Citations/CitationModal.svelte#L163-L170, https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/26xxx/CVE-2026-26192.json, https://github.com/open-webui/open-webui/security/advisories/GHSA-xc8p-9rr6-97r2, https://nvd.nist.gov/vuln/detail/CVE-2026-26192

Severity

7.3

CVSS Score

Basic Information

Ecosystem

Base CVSS

7.3

EPSS Probability

0.00043%

EPSS Percentile

0.13124%

Introduced Version

Fix Available

6adde203cd292a9e3af9c64a2ae36b603fed096a

Fix Critical Vulnerabilities Instantly

Secure your app without upgrading.

Fix Without Upgrading

Get a Demo

Let's Patch It!

CVE-2026-26192

CVE-2026-26192

Package Versions Affected

Automatically patch vulnerabilities without upgrading

CVSS Version

Related Resources

References

Severity

7.3

Basic Information

Fix Critical Vulnerabilities Instantly