CVE-2026-44569

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.6.19

Description An Insecure Direct Object Reference (IDOR) exists in the channels message management system, allowing authenticated users to modify or delete any message within channels where they have read access. The issue stems from the message update and delete endpoints, which perform channel-level authorization but fail to validate message ownership. While the frontend restricts edit and delete options to owners or administrators, the backend APIs bypass these controls by only verifying channel access permissions. This allows attackers to directly call the APIs using the message id parameter to tamper with message integrity and audit trails. The affected functions include update message by id() and delete message by id(), and the affected endpoints are "/api/v1/channels/{channel id}/messages/{victim message id}/update" and "/api/v1/channels/{channel id}/messages/{victim message id}/delete".

Recommendations Update to version 0.6.19.