CVE-2026-44568 | open-webui Open WebUI up to 0.8.x marked.parse cross site scripting (GHSA-fq3v-xjjx-95rc)

A vulnerability has been found in open-webui Open WebUI up to 0.8.x and classified as problematic. This impacts the function marked.parse. The manipulation leads to cross site scripting.

This vulnerability is documented as CVE-2026-44568. The attack can be initiated remotely. There is not any exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More