2 matches found
OpenClaw has an unspecified vulnerability (CNVD-2026-19026)
OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to suppress legitimate events on different accounts by matching the eventname and messageid parameters...
CVE-2025-55368
CVE-2025-55368 affects jshERP v3.5 in the controller\RoleController.java, where an incorrect access control allows unauthorized attackers to arbitrarily modify the supplier status under any account. Multiple sources (RH, NVD, OSV, CNNVD, CVE list, PT Security) confirm the same description and ver...