InfoWorld

Open WebUI bug turns the ‘free model’ into an enterprise backdoor

The bug allows attacker-controlled model servers to inject code, steal session tokens, and, in some cases, escalate to remote ...

This WebUI vulnerability allows remote code execution - here's how to stay safe

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could ...

Ohio teacher, husband charged in alleged drug trafficking scheme using mail

Federal authorities charged a husband and wife in Logan County, accused of using the U.S. mail system for drug trafficking.