GHSA-4vg5-rp28-gvjf: Open WebUI has Improper Authorization Control
Summary
Open WebUI version 0.1.105 has an authorization flaw where users with a 'pending' status (the default for new sign-ups) can still receive authentication tokens (JWT, a standardized way to prove identity in web requests) and make API calls meant only for approved users, bypassing the authorization check (the system that verifies what actions a user is allowed to perform) that is only enforced on the website interface, not in the backend API itself.
Vulnerability Details
EPSS: 0.0%
Yes
May 8, 2026
Classification
Affected Vendors
Affected Packages
Related Issues
CVE-2024-37052: Deserialization of untrusted data can occur in versions of the MLflow platform running version 1.1.0 or newer, enabling
CVE-2026-26190: Milvus is an open-source vector database built for generative AI applications. Prior to 2.5.27 and 2.6.10, Milvus expose
Original source: https://github.com/advisories/GHSA-4vg5-rp28-gvjf
First tracked: May 8, 2026 at 08:00 PM
Classified by LLM (prompt v3) · confidence: 95%