2 matches found
CVE-2026-36045
picoclaw =v0.1.2 and earlier is vulnerable to OS command injection via the ExecTool component pkg/tools/shell.go. The guardCommand function attempts to restrict shell command execution using a denylist of 8 regular expressions, but the denylist is incomplete...
CVE-2026-36045
creationtimestamp| type| source ---|---|--- 2026-04-13 15:43:06+00:00| seen| https://gist.github.com/NucleiAv/41899be6266a9813840301577792ed68...