mirror of
https://github.com/open-webui/open-webui.git
synced 2026-07-16 23:21:44 -05:00
Security Vulnerabilities #1574
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
Originally created by @rook1337 on GitHub (Jul 21, 2024).
Dear team,
Please check full detailed report here
https://huntr.com/bounties/2ed02d49-aa91-4061-98b9-61ce096f0396
https://huntr.com/bounties/94a68137-bdea-4e6f-8c20-19f3f1e6f0b8
https://huntr.com/bounties/f42cf72a-8015-44a6-81a9-c6332ef05afc
https://huntr.com/bounties/e449567a-01eb-4129-85a8-cd89e6cfcaa8
Please check and validate these vulnerabilities
@justinh-rahb commented on GitHub (Jul 21, 2024):
I highly encourage you to instead use GitHub security disclosures, as those above seem to require an account. It's not very polite.
@rook1337 commented on GitHub (Jul 21, 2024):
hello @justinh-rahb
Open-webui have hosted their bug bounty program on huntr.com so that we security researchers can report vulnerabilities directly on huntr.com. Only maintainer's can access these reports on huntr.com because of security reasons
@justinh-rahb commented on GitHub (Jul 21, 2024):
Open WebUI hasn't got a bug bounty program. This seems sus. Interesting sales funnel though