CVE-2025-65959

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.6.37

Description Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. A Stored Cross-Site Scripting (XSS) issue exists in the Notes PDF download functionality. An attacker can import a Markdown file containing malicious SVG tags into Notes, which allows them to execute arbitrary JavaScript code and potentially steal session tokens when a victim downloads the note as a PDF. This can be exploited by authenticated users, and unauthenticated external attackers can steal session tokens from users, including administrators and regular users, by sharing specially crafted markdown files. The vulnerability is related to the processing of SVG tags within Markdown files.

Recommendations Versions prior to 0.6.37 should be updated to version 0.6.37.