3 matches found
GHSA-WPPJ-C6MR-83JJ OpenClaw: OpenShell FS bridge writes stay pinned to the sandbox mount root
Summary OpenShell FS bridge writes stay pinned to the sandbox mount root Affected Packages / Versions - Package: openclaw npm - Affected versions: = 2026.4.21 - Fixed version: 2026.4.22 Impact A time-of-check/time-of-use race around OpenShell sandbox filesystem writes could let a symlink swap...
PT-2026-26230
Name of the Vulnerable Software and Affected Versions OpenClaw versions prior to 2026.3.2 Description The stageSandboxMedia function does not properly validate destination symlinks during media staging, potentially allowing writes to follow symlinks outside the sandbox workspace. This could allow...
Exploit for Unrestricted Upload of File with Dangerous Type in Perfree Perfreeblog
Phân tích lỗ hổng CVE-2022-30333 – Path Traversal trong UnRAR...