Path traversal in Open WebUI - CVE-2026-54014
Published: June 30, 2026
Open WebUI
Detailed vulnerability description
The vulnerability allows a remote user to disclose sensitive information.
The vulnerability exists due to path traversal in serve_cache_file() in open_webui/main.py when handling GET requests to /cache/{path}. A remote user can send a specially crafted request using a sibling-prefix traversal path to disclose sensitive information.
Only sibling directories whose names begin with "cache" are reachable through the bypass. Deep traversal and absolute paths are blocked, and delivering the payload may require a raw HTTP or ASGI request because some clients normalize ".." segments.