4 matches found
OpenClaw 安全漏洞
OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.3.22 contained security vulnerabilities. These vulnerabilities stemmed from incomplete host environment variable cleanup mechanisms in the host-env-security-policy.json and...
Malicious Package in jquery-airload
Version 0.2.5 of jquery-airload contained malicious code. The code when executed in the browser would enumerate password, cvc, cardnumber fields from forms and send the extracted values to https://js-metrics.com/minjs.php?pl= Recommendation Remove the package from your environment. It's also...
The vulnerability of the astra-safepolicy utility in the Astra Linux operating system allows a perpetrator to gain access to confidential data and unauthorizedly execute the command interpreter.
The vulnerability of the astra-safepolicy utility in the Astra Linux operating system is related to a flaw that causes no cleanup of the environment during the execution of interpreters, and it also allows for bypassing restrictions on the execution of these interpreters by unauthorized users...
USN-2933-1 exim4 vulnerabilities
It was discovered that Exim incorrectly filtered environment variables when used with the perlstartup configuration option. If the perlstartup option was enabled, a local attacker could use this issue to escalate their privileges to the root user. This issue has been fixed by having Exim clean th...