19 matches found
MAL-2026-4757 Malicious code in morin (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 37c27d25a4c203cbb89156281fbacc7feb424a09eaa296f7c3dedff860891f1f morin/common.py hardcodes an HTTP proxy at 191.102.147.15:8000 with embedded credentials proxies = 'https': 'http://5TUMV6:[email protected]:8000...
CVE-2026-32982
OpenClaw before 2026.3.13 contains an information disclosure vulnerability in the fetchRemoteMedia function that exposes Telegram bot tokens in error messages. When media downloads fail, the original Telegram file URLs containing bot tokens are embedded in MediaFetchError strings and leaked to lo...
CVE-2026-32982
OpenClaw before 2026.3.13 contains an information disclosure vulnerability in the fetchRemoteMedia function that exposes Telegram bot tokens in error messages. When media downloads fail, the original Telegram file URLs containing bot tokens are embedded in MediaFetchError strings and leaked to lo...
PT-2026-29234
OpenClaw before 2026.3.13 contains an information disclosure vulnerability in the fetchRemoteMedia function that exposes Telegram bot tokens in error messages. When media downloads fail, the original Telegram file URLs containing bot tokens are embedded in MediaFetchError strings and leaked to lo...
GHSA-XWCJ-HWHF-H378 OpenClaw Telegram media fetch errors exposed bot tokens in logged file URLs
Summary openclaw versions /..., so the resulting error strings could leak bot tokens into logs, console output, or any downstream error surface that rendered the exception text. This issue is in scope under OpenClaw's trust model because the leaked secret is an OpenClaw-operated integration...
OpenClaw has an unspecified vulnerability (CNVD-2026-13376)
OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a security vulnerability that stems from logging not desensitizing Telegram bot tokens, which can be exploited by an attacker to cause token disclosure...
CVE-2026-27003
OpenClaw is a personal AI assistant. Telegram bot tokens can appear in error messages and stack traces for example, when request URLs include https://api.telegram.org/bot/.... Prior to version 2026.2.15, OpenClaw logged these strings without redaction, which could leak the bot token into logs,...
OpenClaw 安全漏洞
OpenClaw is openclaw open source an intelligent artificial assistant. OpenClaw suffers from a security vulnerability that stems from logging not desensitizing Telegram bot tokens, which can be exploited by an attacker to cause token disclosure...
CVE-2026-27003
OpenClaw is a personal AI assistant. Telegram bot tokens can appear in error messages and stack traces for example, when request URLs include https://api.telegram.org/bot/.... Prior to version 2026.2.15, OpenClaw logged these strings without redaction, which could leak the bot token into logs,...
RHSA-2023:7857
creationtimestamp| type| source ---|---|--- 2025-03-15 03:48:56+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7651 2025-04-03 03:33:49+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10160...
CVE-2023-7124
creationtimestamp| type| source ---|---|--- 2023-12-28 04:26:29+00:00| seen| https://t.me/ctinow/159916 2024-01-04 21:21:58+00:00| seen| https://t.me/ctinow/163225 2024-01-19 16:11:58+00:00| seen| https://t.me/ctinow/170257...
CVE-2023-45178
creationtimestamp| type| source ---|---|--- 2023-12-22 09:51:42+00:00| seen| https://t.me/ctinow/158280 2024-01-12 15:31:41+00:00| seen| https://t.me/ctinow/167323...
CVE-2022-23038
creationtimestamp| type| source ---|---|--- 2022-03-10 22:12:59+00:00| seen| https://t.me/cibsecurity/38736 2022-03-10 22:13:00+00:00| seen| https://t.me/cibsecurity/38737 2022-03-10 22:13:01+00:00| seen| https://t.me/cibsecurity/38738 2022-03-10 22:13:05+00:00| seen| https://t.me/cibsecurity/387...
CVE-2020-26265
creationtimestamp| type| source ---|---|--- 2020-12-11 20:35:53+00:00| seen| https://t.me/cibsecurity/20365 2020-12-11 20:46:10+00:00| seen| https://t.me/cibsecurity/20385 2020-12-11 21:25:24+00:00| seen| https://t.me/cibsecurity/20404 2020-12-11 22:04:46+00:00| seen| https://t.me/cibsecurity/204...
CVE-2020-7792
creationtimestamp| type| source ---|---|--- 2020-12-11 14:35:28+00:00| seen| https://t.me/cibsecurity/19984 2020-12-11 14:41:40+00:00| seen| https://t.me/cibsecurity/20004 2020-12-11 15:25:26+00:00| seen| https://t.me/cibsecurity/20024 2020-12-11 16:16:03+00:00| seen| https://t.me/cibsecurity/200...
CVE-2020-13357
creationtimestamp| type| source ---|---|--- 2020-12-11 07:35:25+00:00| seen| https://t.me/cibsecurity/19786 2020-12-11 07:38:24+00:00| seen| https://t.me/cibsecurity/19806 2020-12-11 08:25:43+00:00| seen| https://t.me/cibsecurity/19826 2020-12-11 09:25:38+00:00| seen| https://t.me/cibsecurity/198...
CVE-2020-26416
creationtimestamp| type| source ---|---|--- 2020-12-11 07:35:16+00:00| seen| https://t.me/cibsecurity/19777 2020-12-11 07:38:15+00:00| seen| https://t.me/cibsecurity/19797 2020-12-11 08:25:32+00:00| seen| https://t.me/cibsecurity/19817 2020-12-11 09:25:27+00:00| seen| https://t.me/cibsecurity/198...
CVE-2020-35126
creationtimestamp| type| source ---|---|--- 2020-12-11 07:35:06+00:00| seen| https://t.me/cibsecurity/19769 2020-12-11 07:38:07+00:00| seen| https://t.me/cibsecurity/19789 2020-12-11 08:25:19+00:00| seen| https://t.me/cibsecurity/19809 2020-12-11 09:25:16+00:00| seen| https://t.me/cibsecurity/198...
CVE-2020-19527
creationtimestamp| type| source ---|---|--- 2020-12-11 02:34:35+00:00| seen| https://t.me/cibsecurity/19640 2020-12-11 02:37:38+00:00| seen| https://t.me/cibsecurity/19660 2020-12-11 03:25:30+00:00| seen| https://t.me/cibsecurity/19680 2020-12-11 04:25:21+00:00| seen| https://t.me/cibsecurity/197...