CVE-2026-45347

Name of the Vulnerable Software and Affected Versions Open WebUI versions prior to 0.5.11

Description A blind server side request forgery (SSRF) exists in the PDF generate function. User inputs are interpreted as HTML and embedded into the PDF. While scripts and certain dangerous tags like iFrame and Object are blocked, an image tag can be used to force the server to make outbound GET requests. This can be exploited via the '/api/v1/utils/pdf' endpoint by inserting a payload into the title variable. This issue allows an attacker to trigger arbitrary GET requests and potentially enumerate internal assets through response delays.

Recommendations Update to version 0.5.11 or later.