CVE-2025-64495 | open-webui Open WebUI up to 0.6.34 cross site scripting (GHSA-w7xj-8fx7-wfch)

A vulnerability, which was classified as problematic, was found in open-webui Open WebUI up to 0.6.34. This affects an unknown function. Such manipulation leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-64495. The attack can be launched remotely. No exploit exists.

You should upgrade the affected component.VulDB Recent EntriesRead More