Incorrect Authorization
Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Incorrect Authorization through the handleSendPolicyCommand function. An attacker can persistently alter the session's delivery policy by issuing /send on|off|inherit commands as a...