Missing Authorization
Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Missing Authorization in the delivery queue recovery. An attacker can bypass group tool-policy enforcement for media replay by replaying recovered queued outbound media without the origin...