Zero Day MonitorZDM
DashboardVulnerabilitiesTrendingZero-DaysNewsAbout
Login
ImpressumPrivacy Policy
Zero Day Monitor © 2026
2628 articles · 174587 vulns · 37/41 feeds (7d)
← Back to list
4.3
CVE-2026-54006PATCHED
python · open-webui

Open WebUI: Calendar event re-parenting allows writing events into another user's calendar

Description

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.9.6, POST /api/v1/calendars/events/{event_id}/update validates that the caller has write access to the calendar the event currently belongs to, but does not validate the destination calendar_id supplied in the request body. The model layer then persists the new calendar_id unconditionally. A regular user-role account can therefore create an event in their own calendar and immediately move it into any other user's calendar whose ID they know — bypassing the authorization check that create_event correctly performs. This vulnerability is fixed in 0.9.6.

Affected Products

VendorProductVersions
pythonopen-webui< 0.9.6, 0.9.5

References

  • https://github.com/open-webui/open-webui/security/advisories/GHSA-f3g7-59qc-pqg6(x_refsource_CONFIRM)

Related News (1 articles)

Tier C
VulDB18d ago
CVE-2026-54006 | open-webui Open WebUI up to 0.9.5 /api/v1/calendars/events authorization (GHSA-f3g7-59qc-pqg6)
→ No new info (linked only)
CVSS 3.14.3 HIGH
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N
CISA KEV❌ No
Actively exploited❌ No
Patch available
open-webui@0.9.6
CWECWE-639
PublishedJun 17, 2026
Last enriched18d agov2
Tags
GHSA-f3g7-59qc-pqg6pip
Trending Score4
Source articles1
Independent1
Info Completeness9/14
Missing: epss, kev, exploit, iocs, mitre_attack

Community Vote

0
Login to vote
0 upvotes0 downvotes
No votes yet

Related CVEs (5)

NONECVE-2026-15308EXP
Incremental HTMLParser feed() allows CPU-exhaustion DoS via repeated unterminated markup declarations
Trending: 68
MEDIUMCVE-2026-55380EXP
Pillow GdImageFile decompression bomb protection bypass
Trending: 25
MEDIUMCVE-2026-55798EXP
Pillow: WindowsViewer.get_command() OS command injection via unescaped shell path
Trending: 21
HIGHCVE-2026-54010
Open WebUI: Forged chat-file link allows cross-user file read and deletion
Trending: 4
HIGHCVE-2026-54013
Open WebUI: Stored XSS to Account Takeover via Model Profile Images in Open WebUI
Trending: 4

Pin to Dashboard

Verification

State: unverified
Confidence: 0%

Vulnerability Timeline

CVE Published
Jun 17, 2026
Discovered by ZDM
Jun 17, 2026
Patch Available
Jun 23, 2026
Updated: affectedVersions, severity
Jun 23, 2026

Version History

v2
Last enriched 18d ago
v2Tier C18d ago

Updated affected versions to include 0.9.5, changed severity to HIGH, and noted that no exploit exists.

affectedVersionsseverity
via VulDB
v125d ago

Initial creation