CVE-2026-44568

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.9.0

Description The AccountPending.svelte component renders admin-configured "Pending User Overlay Content" using marked.parse() inside {@html} with an incorrect DOMPurify application order. DOMPurify is applied to the raw Markdown input before it is processed by marked.parse(), allowing an admin to inject arbitrary JavaScript that executes in the browser context of any pending user who views the overlay page. This occurs because marked.parse() can convert Markdown link syntax into HTML tags with javascript: hrefs after the sanitization process has already occurred.

Recommendations Update to version 0.9.0.