CVE-2026-44721: open-webui Vulnerable to Stored XSS via Model Description

May 8, 2026

This is a stored cross-site scripting (XSS) vulnerability that allows any authenticated user with model creation permission (workspace.models) to execute arbitrary JavaScript in the browser of any other user (including admins) who views the malicious model in the chat UI.

References

github.com/advisories/GHSA-gf5m-wcrh-7928
github.com/open-webui/open-webui
github.com/open-webui/open-webui/security/advisories/GHSA-gf5m-wcrh-7928
nvd.nist.gov/vuln/detail/CVE-2026-44721

Code Behaviors & Features

Detect and mitigate CVE-2026-44721 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →