Origin validation error in Open WebUI - CVE-2026-54007

 

Origin validation error in Open WebUI - CVE-2026-54007

Published: June 30, 2026


Vulnerability identifier: #VU135948
CSH Severity: High
CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Amber
CVE-ID: CVE-2026-54007
CWE-ID: CWE-346
Exploitation vector: Remote access
Exploit availability: No public exploit available
Vendor: Open WebUI
Affected software:
Open WebUI

Detailed vulnerability description

The vulnerability allows a remote attacker to trigger unauthorized prompt submission and model or tool execution under the victim's session.

The vulnerability exists due to improper origin validation in the chat message listener in src/lib/components/chat/Chat.svelte when processing cross-origin postMessage messages. A remote attacker can send crafted input:prompt and action:submit messages to trigger unauthorized prompt submission and model or tool execution under the victim's session.

The victim must be authenticated to Open WebUI in the browser, and user interaction is required to click on the attacker-controlled page.


How to mitigate CVE-2026-54007

Install security update from vendor's website.

Sources