CVE-2024-6706: 
Python vulnerability analysis and mitigation

A stored cross-site scripting (XSS) vulnerability was discovered in Open WebUI version 0.1.105 running on Debian 12, identified as CVE-2024-6706. The vulnerability was discovered by Jaggar Henry and Sean Segreti of KoreLogic, Inc. and publicly disclosed on August 7, 2024 (KoreLogic Advisory).

The vulnerability exists in the way Open WebUI handles markdown code blocks from language model responses. While the application properly sanitizes special characters outside of markdown code blocks by converting them to HTML entities, it fails to encode these characters when they appear inside code blocks. This inconsistency in sanitization allows attackers to craft malicious prompts that can confuse the sanitizer by using uneven and improperly closed markdown code blocks, ultimately leading to arbitrary JavaScript execution in the web page context (KoreLogic Advisory). The vulnerability has been assigned a CVSS v3.1 base score of 6.1 (Medium) with vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N (NVD).

When successfully exploited, this vulnerability allows attackers to execute arbitrary JavaScript code in the context of the web page through crafted malicious prompts. This could potentially lead to unauthorized access to sensitive information, session hijacking, or other client-side attacks (KoreLogic Advisory).

As of the public disclosure, the issue appears to have been silently remediated. The maintainer closed the GitHub security report GHSA-6953-m722-rpq8 on May 2, 2024, though no official response or fix details were provided by the vendor (KoreLogic Advisory).