Path traversal in Open WebUI - #VU136852
Published: July 3, 2026
Open WebUI
Detailed vulnerability description
The vulnerability allows a remote user to access paths outside the intended terminal proxy path boundary.
The vulnerability exists due to path traversal in _sanitize_proxy_path() in backend/open_webui/routers/terminals.py when processing a 9x percent-encoded traversal path through the terminal proxy. A remote user can send a specially crafted path parameter to access paths outside the intended terminal proxy path boundary.
Exploitation requires access to an existing admin-configured terminal connection, and forwarded requests use the configured terminal credentials and X-User-Id header.