Lucene search
K

186 matches found

EUVD
EUVD
added 2026/05/05 11:24 a.m.7 views

EUVD-2026-27253

OpenClaw versions from 2026.2.22 before 2026.4.12 contain an insufficient shell-wrapper detection vulnerability allowing attackers to inject environment variable assignments at the argv level. Attackers can bypass exec preflight handling to manipulate high-risk shell variables like SHELLOPTS and...

8.8CVSS5.9AI score0.00407EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/05/05 11:24 a.m.72 views

CVE-2026-42435 OpenClaw 2026.2.22 < 2026.4.12 - Shell-Wrapper Detection Bypass via Environment Variable Assignment Injection

OpenClaw versions from 2026.2.22 before 2026.4.12 contain an insufficient shell-wrapper detection vulnerability allowing attackers to inject environment variable assignments at the argv level. Attackers can bypass exec preflight handling to manipulate high-risk shell variables like SHELLOPTS and...

8.8CVSS0.00407EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/04 5:24 p.m.10 views

EUVD-2026-27067

goshs is a SimpleHTTPServer written in Go. Prior to version 2.0.2, the PUT upload handler httpserver/updown.go lacks the CSRF token validation that was added to the POST upload handler during the CVE-2026-40883 fix. Combined with the unconditional Access-Control-Allow-Origin: on the OPTIONS...

8.1CVSS5.9AI score0.00165EPSS
Exploits2References3
Vulnrichment
Vulnrichment
added 2026/05/04 5:24 p.m.5 views

CVE-2026-42091 goshs has Cross-Origin Arbitrary File Write via Missing CSRF on PUT and Wildcard CORS

goshs is a SimpleHTTPServer written in Go. Prior to version 2.0.2, the PUT upload handler httpserver/updown.go lacks the CSRF token validation that was added to the POST upload handler during the CVE-2026-40883 fix. Combined with the unconditional Access-Control-Allow-Origin: on the OPTIONS...

6.5CVSS5.9AI score0.00165EPSS
Exploits1References3
Snyk
Snyk
added 2026/05/04 4:53 p.m.9 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the imgPostURLInfo function. An attacker can cause the server to initiate outbound HTTP HEAD requests to arbitrary endpoints by supplying a crafted URL during the image import preflight stage. This c...

5.3CVSS5.9AI score0.00271EPSS
Exploits1References2
OSV
OSV
added 2026/05/04 4:53 p.m.5 views

GHSA-8GW4-P4WQ-4HCV Incus has Blind SSRF via Image Import Preflight HEAD

Summary A partial implementation of our restricted.images.servers project restriction allows users in such restricted projects to still cause Incus to send HEAD requests to arbitrary endpoints. The actual image download will be rejected by the project restriction, but the ability to trigger...

5.3CVSS5.9AI score0.00271EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/05/04 4:53 p.m.9 views

Incus has Blind SSRF via Image Import Preflight HEAD

Summary A partial implementation of our restricted.images.servers project restriction allows users in such restricted projects to still cause Incus to send HEAD requests to arbitrary endpoints. The actual image download will be rejected by the project restriction, but the ability to trigger...

5.3CVSS5.9AI score0.00271EPSS
Exploits1References4Affected Software1
Snyk
Snyk
added 2026/05/04 4:53 p.m.7 views

Server-side Request Forgery (SSRF)

Overview Affected versions of this package are vulnerable to Server-side Request Forgery SSRF via the imgPostURLInfo function. An attacker can cause the server to initiate outbound HTTP HEAD requests to arbitrary endpoints by supplying a crafted URL during the image import preflight stage. This c...

5.3CVSS5.9AI score0.00271EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/05/04 12:0 a.m.10 views

goshs 跨站请求伪造漏洞

Goshs is a simple HTTP server developed by Patrick Hener using Go language. Versions of Goshs prior to 2.0.2 contained a cross-site request forgeing vulnerability. This vulnerability stemmed from the lack of CSRF token verification in the PUT upload handler. Combined with the unconditional...

6.5CVSS5.9AI score0.00165EPSS
Exploits1References2
NVD
NVD
added 2026/04/28 7:37 p.m.5 views

CVE-2026-41374

OpenClaw before 2026.3.31 performs Discord audio preflight transcription before validating member authorization, allowing unauthenticated attackers to consume resources. Remote attackers can trigger audio preflight processing without member allowlist validation to cause resource exhaustion...

6.9CVSS0.00474EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/28 6:9 p.m.9 views

EUVD-2026-26083

OpenClaw before 2026.3.31 performs Discord audio preflight transcription before validating member authorization, allowing unauthenticated attackers to consume resources. Remote attackers can trigger audio preflight processing without member allowlist validation to cause resource exhaustion...

6.9CVSS5.2AI score0.00474EPSS
Exploits0References3
CVE
CVE
added 2026/04/28 6:9 p.m.15 views

CVE-2026-41374

OpenClaw prior to 2026.3.31 processes Discord audio preflight before member authorization, enabling unauthenticated resource consumption. Affected: OpenClaw npm package; vulnerable versions are

6.9CVSS5.2AI score0.00474EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/28 6:9 p.m.31 views

CVE-2026-41374 OpenClaw < 2026.3.31 - Resource Consumption via Discord Audio Preflight Before Member Authorization

OpenClaw before 2026.3.31 performs Discord audio preflight transcription before validating member authorization, allowing unauthenticated attackers to consume resources. Remote attackers can trigger audio preflight processing without member allowlist validation to cause resource exhaustion...

6.9CVSS0.00474EPSS
Exploits0References3
OSV
OSV
added 2026/04/28 6:9 p.m.2 views

CVE-2026-41374 OpenClaw < 2026.3.31 - Resource Consumption via Discord Audio Preflight Before Member Authorization

OpenClaw before 2026.3.31 performs Discord audio preflight transcription before validating member authorization, allowing unauthenticated attackers to consume resources. Remote attackers can trigger audio preflight processing without member allowlist validation to cause resource exhaustion...

6.9CVSS6AI score0.00474EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/04/28 12:0 a.m.9 views

PT-2026-35759

OpenClaw before 2026.3.31 performs Discord audio preflight transcription before validating member authorization, allowing unauthenticated attackers to consume resources. Remote attackers can trigger audio preflight processing without member allowlist validation to cause resource exhaustion...

6.9CVSS5.2AI score0.00474EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.17 views

PT-2026-36883

Name of the Vulnerable Software and Affected Versions goshs versions prior to 2.0.2 Description The PUT upload handler in httpserver/updown.go lacks Cross-Site Request Forgery CSRF token validation. CSRF is a type of attack that tricks a victim into submitting a malicious request. This deficiency...

6.5CVSS5.9AI score0.00165EPSS
Exploits1References11
NVD
NVD
added 2026/04/21 12:16 a.m.5 views

CVE-2026-41331

OpenClaw before 2026.3.31 contains a resource consumption vulnerability in Telegram audio preflight transcription that allows unauthorized group senders to trigger transcription processing. Attackers can exploit insufficient allowlist enforcement to cause resource or billing consumption by...

6.9CVSS0.00297EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/20 11:8 p.m.32 views

CVE-2026-41331 OpenClaw < 2026.3.31 - Resource Consumption via Unauthorized Telegram Audio Preflight Transcription

OpenClaw before 2026.3.31 contains a resource consumption vulnerability in Telegram audio preflight transcription that allows unauthorized group senders to trigger transcription processing. Attackers can exploit insufficient allowlist enforcement to cause resource or billing consumption by...

6.9CVSS0.00297EPSS
Exploits0References3
CVE
CVE
added 2026/04/20 11:8 p.m.15 views

CVE-2026-41331

OpenClaw is affected in versions before 2026.3.31. The vulnerability is a resource consumption issue in Telegram audio preflight transcription that can be triggered by unauthorized group senders, due to insufficient allowlist enforcement before authorization checks. The impact is resource or bill...

6.9CVSS5.8AI score0.00297EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/04/20 11:8 p.m.5 views

EUVD-2026-24020

OpenClaw before 2026.3.31 contains a resource consumption vulnerability in Telegram audio preflight transcription that allows unauthorized group senders to trigger transcription processing. Attackers can exploit insufficient allowlist enforcement to cause resource or billing consumption by...

6.9CVSS5.8AI score0.00297EPSS
Exploits0References3
Rows per page
Query Builder