Authorization bypass through user-controlled key in Open WebUI - CVE-2026-54015
Published: June 30, 2026
Open WebUI
Detailed vulnerability description
The vulnerability allows a remote user to disclose sensitive information and delete prompt history entries.
The vulnerability exists due to authorization bypass through user-controlled key in prompt version-history endpoints when handling caller-supplied history IDs that are not bound to the authorized prompt. A remote user can supply a victim prompt history ID to read another user's prompt snapshots or delete another user's history entry to disclose sensitive information and delete prompt history entries.
Exploitation requires knowing or obtaining victim prompt history UUIDs. The delete impact is limited to version-history entries and does not destroy the active prompt row.