Lucene search
K

6 matches found

CNNVD
CNNVD
added 2026/04/28 12:0 a.m.11 views

OpenClaw 安全漏洞

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw has a security vulnerability that can be exploited by an attacker to retrieve threaded messages that should be filtered by the sender's permission list...

5.4CVSS5.8AI score0.00177EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.11 views

OpenClaw 代码问题漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.4.8 had code vulnerabilities. These vulnerabilities stemmed from server-side request forgery in the media download path of QQ robots, which could allow attackers to access interna...

8.5CVSS5.9AI score0.00218EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/10 12:0 a.m.7 views

OpenClaw 安全漏洞

OpenClaw is an open-source intelligent artificial assistant developed by OpenClaw. Versions of OpenClaw prior to 2026.3.22 contained security vulnerabilities. These vulnerabilities stemmed from defects in the setting coordination process, which treated explicitly empty permission lists as not set...

6.5CVSS5.8AI score0.00278EPSS
Exploits0References4
CNVD
CNVD
added 2025/10/15 12:0 a.m.2 views

Bold Workplanner Insecure Direct Object Reference Vulnerability (CNVD-2025-24047)

Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access permission lists using unauthorized internal identifie...

7.1CVSS6.8AI score0.00294EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/30 11:17 a.m.3 views

CVE-2025-41099 Insecure Direct Object Reference in GPS BOLD Workplanner

Insecure Direct Object Reference IDOR vulnerability in BOLD Workplanner in versions prior to 2.5.25 4935b438f9b, consisting of a lack of adequate validation of user input, allowing an authenticated user to access to the list of permissions using unauthorised internal identifiers...

7.1CVSS6.3AI score0.00294EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/30 12:0 a.m.2 views

BOLD Workplanner 安全漏洞

Bold Workplanner is an enterprise software for human resource management from the Spanish company Bold Workplanner. Bold Workplanner suffers from an insecure direct object reference vulnerability that can be exploited by an attacker to access permission lists using unauthorized internal identifie...

7.1CVSS6.7AI score0.00294EPSS
Exploits0References1
Rows per page
Query Builder