Stored XSS in Open WebUI PDF Download Functionality by Open WebUI
CVE-2025-65959

8.7HIGH

Key Information:

Vendor: Open-webui
Status: Open-webui
Vendor: CVE Published:; 4 December 2025

What is CVE-2025-65959?

Open WebUI, a self-hosted artificial intelligence platform, contains a Stored XSS vulnerability in its Notes PDF download feature prior to version 0.6.37. This vulnerability allows authenticated users to upload a Markdown file that includes malicious SVG tags. When another user downloads the note as a PDF, the attacker can execute arbitrary JavaScript code within the victim's session, leading to session token theft. Notably, unauthorized external attackers can also exploit this vulnerability by crafting specific Markdown files. A patch fixing this issue is available in version 0.6.37.

Affected Version(s)

open-webui < 0.6.37

References

https://github.com/open-webui/open-webui/security/advisor...

x_refsource_CONFIRM

https://github.com/open-webui/open-webui/commit/03cc6ce8e...

x_refsource_MISC

CVSS V3.1

Score:

8.7

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

Required

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 4, 2025
Vulnerability Reserved
Nov 18, 2025

CVE-2025-65959 Data

JSON

Open-webui

What is CVE-2025-65959?

Affected Version(s)

References

CVSS V3.1

Timeline