Lucene search
K
GithubRecent

33225 matches found

Github Security Blog
Github Security Blog
added 2026/03/13 3:47 p.m.10 views

OpenClaw: Sandbox `writeFile` commit could race outside the validated path

Summary In affected versions of openclaw, the sandbox fs-bridge writeFile commit step used an unanchored container path during the final move into place. An attacker racing parent-path changes inside the sandbox could redirect the committed file outside the validated sandbox path. Impact This is ...

6.3CVSS5.9AI score0.00078EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 3:40 p.m.14 views

flatted vulnerable to unbounded recursion DoS in parse() revive phase

Summary flatted's parse function uses a recursive revive phase to resolve circular references in deserialized JSON. When given a crafted payload with deeply nested or self-referential $ indices, the recursion depth is unbounded, causing a stack overflow that crashes the Node.js process. Impact...

7.5CVSS5.9AI score0.00777EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 3:40 p.m.14 views

Poseidon V1 variable-length input collision via implicit zero-padding

Impact Poseidon V1 PoseidonSponge accepts variable-length inputs without injective padding. When a caller provides fewer inputs than the sponge rate inputs.len k, hashm1, ..., mk equals hashm1, ..., mk, 0 because both produce identical pre-permutation states. This affects any use of PoseidonSpong...

8.7CVSS5.8AI score0.00221EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 3:40 p.m.10 views

Magic Wormhole: "wormhole receive" allows arbitrary local file overwrite

Impact What kind of vulnerability is it? Who is impacted? Receiving a file wormhole receive from a malicious party could result in overwriting critical local files, including /.ssh/authorizedkeys and .bashrc. This could be used to compromise the receiver's computer. Only the sender of the file th...

8.2CVSS5.7AI score0.0035EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 3:40 p.m.13 views

Dagu: Path Traversal via `dagRunId` in Inline DAG Execution

Vulnerability Summary The dagRunId request field accepted by the inline DAG execution endpoints is passed directly into filepath.Join to construct a temporary directory path without any format validation. Go's filepath.Join resolves .. segments lexically, so a caller can supply a value such as...

9.1CVSS6.2AI score0.00421EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 3:5 p.m.7 views

Dagu: SSE Authentication Bypass in Basic Auth Mode

SSE Authentication Bypass in Basic Auth Mode Summary When Dagu is configured with HTTP Basic authentication DAGUAUTHMODE=basic, all Server-Sent Events SSE endpoints are accessible without any credentials. This allows unauthenticated attackers to access real-time DAG execution data, workflow...

7.5CVSS6AI score0.00778EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/13 1:46 p.m.7 views

SandboxJS affected by a Sandbox Escape

Summary It is possible to obtain arrays containing Function, which allows escaping the sandbox. Details There are various ways to get an array containing Function, e.g. js Object.entriesthis.at1 // 'Function', Function: Function Object.valuesthis.slice1, 2 // Function: Function Given an array...

10CVSS5.8AI score0.00547EPSS
Exploits1References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:33 p.m.9 views

Ella Core: AMF DoS via malformed PathSwitchRequest with empty NR security capability bitstrings

Summary Ella Core panics when processing a PathSwitchRequest containing UE Security Capabilities with zero-length NR encryption or integrity protection algorithm bitstrings, resulting in a denial of service. Impact An attacker able to send crafted NGAP messages to Ella Core can crash the process,...

7.5CVSS5.8AI score0.00185EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:33 p.m.9 views

Ella Core vulnerable to Unauthenticated AMF DoS via malformed InitialUEMessage with undersized integrity-protected NAS payload

Summary Ella Core panics when processing a malformed integrity protected NGAP/NAS message with a length under 7 bytes. Impact An attacker able to send crafted NAS messages to Ella Core can crash the process, causing service disruption for all connected subscribers. No authentication is required...

7.5CVSS5.8AI score0.00306EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:32 p.m.16 views

OpenClaw: Untrusted web origins can obtain authenticated operator.admin access in trusted-proxy mode

Summary In affected versions of openclaw, browser-originated WebSocket connections could bypass origin validation when gateway.auth.mode was set to trusted-proxy and the request arrived with proxy headers. A page served from an untrusted origin could connect through a trusted reverse proxy, inher...

8.1CVSS5.8AI score0.00153EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:32 p.m.11 views

TinaCMS CLI has Arbitrary File Read via Disabled Vite Filesystem Restriction

Summary The TinaCMS CLI dev server configures Vite with server.fs.strict: false, which disables Vite's built-in filesystem access restriction. This allows any unauthenticated attacker who can reach the dev server to read arbitrary files on the host system Details When running tinacms dev, the CLI...

6.2CVSS5.9AI score0.01025EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:32 p.m.6 views

TinaCMS Vulnerable to Path Traversal Leading to Arbitrary File Read, Write and Delete

Summary The TinaCMS CLI development server exposes media endpoints that are vulnerable to path traversal, allowing attackers to read and write arbitrary files on the filesystem outside the intended media directory. Details When running tinacms dev, the CLI starts a local HTTP server default port...

8.4CVSS6.3AI score0.00203EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:32 p.m.9 views

TinaCMS CLI Dev Server Vulnerable to Cross-Origin File Exfiltration via CORS Misconfiguration + Path Traversal in TinaCMS

Summary The TinaCMS CLI dev server combines a permissive CORS configuration Access-Control-Allow-Origin: with the path traversal vulnerability previously reported to enable a browser-based drive-by attack. A remote attacker can enumerate the filesystem, write arbitrary files, and delete arbitrary...

9.6CVSS5.9AI score0.00535EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 8:30 p.m.7 views

ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoS

Summary Specially crafted SVG file make segmentation fault and generate trash files in "/tmp", possible to leverage DoS. Operating system, version and so on Linux, Debian Buster LTS core 5.10 / Parrot OS 5.1 Electro Ara Tested ImageMagick version 6.9.11-60, 7.1.0-62 Details A specially created SV...

5.5CVSS5.8AI score0.00865EPSS
Exploits1References6Affected Software19
Github Security Blog
Github Security Blog
added 2026/03/12 6:33 p.m.20 views

Black: Arbitrary file writes from unsanitized user input in cache file name

Impact Black writes a cache file, the name of which is computed from various formatting options. The value of the --python-cell-magics option was placed in the filename without sanitization, which allowed an attacker who controls the value of this argument to write cache files to arbitrary file...

8.7CVSS5.9AI score0.00572EPSS
Exploits0References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 6:32 p.m.7 views

Hyperterse: Raw exposure of database statements in MCP search tool

Hyperterse allows users to specify database queries for tools to execute under the hood. As of v2.0.0, there are only two tools exposed - search and execute. The search tool allows LLMs to search for tools using natural language. While returning results, Hyperterse also returned the raw SQL...

6.5CVSS5.8AI score0.00178EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 6:32 p.m.6 views

Tina: Path Traversal in Media Upload Handle

Affected Package | Field | Value | |-------|-------| | Package | @tinacms/cli | | Version | 2.0.5 latest at time of discovery | | Vulnerable File | packages/@tinacms/cli/src/next/commands/dev-command/server/media.ts | | Vulnerable Lines | 42-43 | --- Summary A path traversal vulnerability CWE-22...

7.4CVSS6AI score0.00325EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 6:32 p.m.8 views

multipart vulnerable to ReDoS in `parse_options_header()`

Summary The parseoptionsheader function in multipart.py uses a regular expression with an ambiguous alternation, which can cause exponential backtracking ReDoS when parsing maliciously crafted HTTP or multipart segment headers. This can be abused for denial of service DoS attacks against web...

7.5CVSS5.7AI score0.00606EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 5:50 p.m.6 views

@tinacms/graphql has a Path Traversal issue

Description TinaCMS allows users to create, update, and delete content documents using relative file paths relativePath, newRelativePath via GraphQL mutations. Under certain conditions, these paths are combined with the collection path using path.join without validating that the resolved path...

6.3CVSS5.9AI score0.00426EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 5:29 p.m.9 views

Parse Server: Account takeover via operator injection in authentication data identifier

Impact An unauthenticated attacker can take over any user account that was created with an authentication provider that does not validate the format of the user identifier e.g. anonymous authentication. By sending a crafted login request, the attacker can cause the server to perform a...

9.8CVSS5.8AI score0.00627EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 5:29 p.m.7 views

Parse Server's OAuth2 adapter shares mutable state across providers via singleton instance

Impact Parse Server's built-in OAuth2 auth adapter exports a singleton instance that is reused directly across all OAuth2 provider configurations. Under concurrent authentication requests for different OAuth2 providers, one provider's token validation may execute using another provider's...

9.1CVSS5.8AI score0.00261EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 5:29 p.m.16 views

Trix has a Stored XSS vulnerability through serialized attributes

Impact The Trix editor, in versions prior to 2.1.17, is vulnerable to XSS attacks when a data-trix-serialized-attributes attribute bypasses the DOMPurify sanitizer. An attacker could craft HTML containing a data-trix-serialized-attributes attribute with a malicious payload that, when the content ...

6AI score
Exploits0References6Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/12 5:26 p.m.11 views

Graphiti vulnerable to Cypher Injection via unsanitized node_labels in search filters

Summary Graphiti versions before 0.28.2 contained a Cypher injection vulnerability in shared search-filter construction for non-Kuzu backends. Attacker-controlled label values supplied through SearchFilters.nodelabels were concatenated directly into Cypher label expressions without validation. In...

8.1CVSS6AI score0.00344EPSS
Exploits2References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:38 p.m.7 views

Tinyauth vulnerable to TOTP/2FA bypass via OIDC authorize endpoint

Summary The OIDC authorization endpoint allows users with a TOTP-pending session password verified, TOTP not yet completed to obtain authorization codes. An attacker who knows a user's password but not their TOTP secret can obtain valid OIDC tokens, completely bypassing the second factor. Details...

8.5CVSS5.9AI score0.0027EPSS
Exploits1References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:38 p.m.7 views

Tinyauth's OIDC authorization codes are not bound to client on token exchange

Summary The OIDC token endpoint does not verify that the client exchanging an authorization code is the same client the code was issued to. A malicious OIDC client operator can exchange another client's authorization code using their own client credentials, obtaining tokens for users who never...

6.5CVSS5.9AI score0.0025EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:38 p.m.12 views

ZeptoClaw: Email Sender Spoofing to bypass Header-Only From Allowlist Validation

Summary The email channel authorizes senders based on the parsed From header identity only. If upstream email authentication/enforcement is weak for example, relaxed SPF/DKIM/DMARC handling, an attacker can spoof an allowlisted sender address and have the message treated as trusted input. Details...

5.9AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:38 p.m.13 views

Sveltejs devalue's `devalue.parse` and `devalue.unflatten` emit objects with `__proto__` own properties

In some circumstances, devalue.parse and devalue.unflatten could emit objects with proto own properties. This in and of itself is not a security vulnerability and is possible with, for example, JSON.parse as well, but it can result in prototype injection if downstream code handles it incorrectly:...

5.8AI score
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:37 p.m.11 views

Parse Server has a SQL injection via query field name when using PostgreSQL

Impact An attacker with access to the master key can inject malicious SQL via crafted field names used in query constraints when Parse Server is configured with PostgreSQL as the database. The field name in a $regex query operator is passed to PostgreSQL using unparameterized string interpolation...

5.1CVSS5.8AI score0.00201EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:37 p.m.8 views

ZeptoClaw: Path boundary checks bypass via symlink, TOCTOU, and hardlink

Summary Workspace boundary enforcement currently has three related bypass risks. This issue tracks fixing all three in one pull request. Details R1 - Dangling Symlink Component Bypass - What happens: Path validation can miss dangling symlink components during traversal checks. - Why it matters: A...

9.8CVSS5.6AI score0.00618EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 4:36 p.m.4 views

ZeptoClaw: Generic webhook channel trusts caller-supplied identity fields; allowlist is checked against untrusted payload data

Summary The generic webhook channel trusts caller-supplied identity fields sender, chatid from the request body and applies authorization checks to those untrusted values. Because authentication is optional and defaults to disabled authtoken: None, an attacker who can reach POST /webhook can spoo...

8.2CVSS6AI score0.00184EPSS
Exploits1References6Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:51 p.m.7 views

@backstage/plugin-scaffolder-backend: Possible exposure of defaultEnvironment secrets using dry-run endpoint

Impact Authenticated users with permission to execute scaffolder dry-runs can gain access to server-configured environment secrets through the dry-run API response. Secrets are properly redacted in log output but not in all parts of the response payload. Deployments that have configured...

6.5CVSS5.9AI score0.00242EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:51 p.m.24 views

@backstage/plugin-auth-backend: SSRF in experimental CIMD metadata fetch

Impact A Server-Side Request Forgery SSRF vulnerability exists in @backstage/plugin-auth-backend when auth.experimentalClientIdMetadataDocuments.enabled is set to true. The CIMD metadata fetch validates the initial clientid hostname against private IP ranges but does not apply the same validation...

7.5CVSS5.8AI score0.00292EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:50 p.m.16 views

@backstage/plugin-auth-backend: OAuth redirect URI allowlist bypass

Impact The experimental OIDC provider in @backstage/plugin-auth-backend is vulnerable to a redirect URI allowlist bypass. Instances that have enabled experimental Dynamic Client Registration or Client ID Metadata Documents and configured allowedRedirectUriPatterns are affected. A specially crafte...

5.9CVSS5.9AI score0.00139EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:50 p.m.7 views

kora-lib: Token-2022 Transfer Fee Not Deducted During Payment Verification

Summary When a user pays transaction fees using a Token-2022 token with a TransferFeeConfig extension, Kora's verifytokenpayment credits the full raw transfer amount as the payment value. However, the on-chain SPL Token-2022 program withholds a portion of that amount as a transfer fee, so the...

5.8AI score
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:50 p.m.7 views

kora-lib: Unrecognized Instruction Types Create Empty Stubs That Bypass Fee Payer Policy

Summary When inner CPI instructions use instruction types not recognized by Kora's parser including Token-2022 extension instructions like ConfidentialTransfer, TransferFeeExtension::WithdrawWithheldTokens, etc., they are reconstructed as stub instructions with empty accounts and empty data. Thes...

5.9AI score
Exploits0References2Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:49 p.m.9 views

StudioCMS: REST API Missing Rank Check Allows Admin to Create Peer Admin Accounts

Summary The REST API createUser endpoint uses string-based rank checks that only block creating owner accounts, while the Dashboard API uses indexOf-based rank comparison that prevents creating users at or above your own rank. This inconsistency allows an admin to create additional admin accounts...

7.2CVSS5.9AI score0.003EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:49 p.m.8 views

StudioCMS: IDOR in User Notification Preferences Allows Any Authenticated User to Modify Any User's Settings

Summary The updateUserNotifications endpoint accepts a user ID from the request payload and uses it to update that user's notification preferences. It checks that the caller is logged in but never verifies that the caller owns the target account id !== userData.user.id. Any authenticated visitor...

5.4CVSS5.8AI score0.00253EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:49 p.m.14 views

StudioCMS: IDOR — Admin-to-Owner Account Takeover via Password Reset Link Generation

Summary The POST /studiocmsapi/dashboard/create-reset-link endpoint allows any authenticated user with admin privileges to generate a password reset token for any other user, including the owner account. The handler verifies that the caller is an admin but does not enforce role hierarchy, nor doe...

7.2CVSS5.8AI score0.00344EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:49 p.m.6 views

StudioCMS S3 Storage Manager Authorization Bypass via Missing `await` on Async Auth Check

Summary The S3 storage manager's isAuthorized function is declared async returns Promise but is called without await in both the POST and PUT handlers. Since a Promise object is always truthy in JavaScript, !isAuthorizedtype always evaluates to false, completely bypassing the authorization check...

7.6CVSS5.9AI score0.00183EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:48 p.m.53 views

Traefik: HTTP/2 frames can cause a running server to panic

Summary More Details: - https://nvd.nist.gov/vuln/detail/CVE-2026-27141 - https://pkg.go.dev/golang.org/x/net/http2?tab=versions Patches - https://github.com/traefik/traefik/releases/tag/v3.6.10 - https://github.com/traefik/traefik/releases/tag/v2.11.40 For more information If you have any...

7.5CVSS5.8AI score0.00501EPSS
Exploits0References4Affected Software2
Github Security Blog
Github Security Blog
added 2026/03/12 2:47 p.m.9 views

AdGuard Home: HTTP/2 Cleartext (h2c) Upgrade Authentication Bypass

VULNERABILITY: HTTP/2 Cleartext h2c Upgrade Authentication Bypass ======================================================================== Severity: CRITICAL CVSS 3.1: 9.8 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CWE: CWE-287 Improper Authentication Component: internal/home/web.go Affected:...

9.8CVSS5.9AI score0.00735EPSS
Exploits2References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:47 p.m.10 views

Uptime Kuma is Missing Authorization Checks on Ping Badge Endpoint, Leaks Ping times of monitors without needing to be on a status page

Summary The GET /api/badge/:id/ping/:duration? endpoint in server/routers/api-router.js does not verify that the requested monitor belongs to a public group. All other badge endpoints check AND public = 1 in their SQL query before returning data. The ping endpoint skips this check entirely,...

5.3CVSS5.9AI score0.00905EPSS
Exploits1References7Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:23 p.m.12 views

ha-mcp has XSS via Unescaped HTML in OAuth Consent Form

Summary The ha-mcp OAuth consent form renders user-controlled parameters via Python f-strings with no HTML escaping. An attacker who can reach the OAuth endpoint and convince the server operator to follow a crafted authorization URL could execute JavaScript in the operator's browser. This affects...

6.8CVSS5.8AI score0.00181EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:23 p.m.15 views

ha-mcp OAuth 2.1 DCR mode enables network reconnaissance via an error oracle

Summary The ha-mcp OAuth consent form beta feature accepts a user-supplied haurl and makes a server-side HTTP request to haurl/api/config with no URL validation. An unauthenticated attacker can submit arbitrary URLs to perform internal network reconnaissance via an error oracle. Two additional co...

5.3CVSS6AI score0.00278EPSS
Exploits0References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:23 p.m.10 views

SiYuan has a Full-Read SSRF via /api/network/forwardProxy

Summary The /api/network/forwardProxy endpoint allows authenticated users to make arbitrary HTTP requests from the server. The endpoint accepts a user-controlled URL and makes HTTP requests to it, returning the full response body and headers. There is no URL validation to prevent requests to...

8.3CVSS5.9AI score0.00278EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:22 p.m.12 views

Copyparty has unexpected JavaScript execution via crafted URL to folder with `.prologue.html`

If an attacker has been given both read- and write-permissions to the server, they can upload a malicious file with the filename .prologue.html and then craft a link to potentially execute arbitrary JavaScript in the victim's context. Note that it is intended behavior that the JavaScript would...

4.4CVSS6AI score0.00162EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:22 p.m.10 views

Copyparty ftp/sftp: Sharing a single file did not fully restrict source-folder access

There was a missing permission-check in the shares feature the shr global-option. This vulnerability only applies in the following scenario: The shares feature is used for the specific purpose of creating a share of just a single file inside a folder Either the FTP or SFTP server is enabled, and...

6.5CVSS5.8AI score0.00274EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:22 p.m.8 views

OpenClaw: /api/channels gateway-auth boundary bypass via path canonicalization mismatch

Summary Gateway auth for plugin channel endpoints can be bypassed when path canonicalization differs between the gateway guard and plugin handler routing. Details On affected versions, server-http only applies gateway auth when raw requestPath matches exactly: - /api/channels - /api/channels/ If ...

6.5CVSS5.8AI score0.00192EPSS
Exploits0References4Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:21 p.m.12 views

OpenClaw: Slack system events bypass sender authorization in member and message subtype handlers

Summary Slack member and message subtype system events messagechanged, messagedeleted, threadbroadcast were not consistently enforcing sender authorization before enqueueing system events. Affected Packages / Versions - Package: openclaw npm - Latest published version: 2026.2.25 - Affected range:...

5.4CVSS5.8AI score0.0018EPSS
Exploits0References5Affected Software1
Github Security Blog
Github Security Blog
added 2026/03/12 2:21 p.m.7 views

OpenClaw: Sandbox dangling-symlink alias handling could bypass workspace-only write boundary

Summary A sandbox boundary-validation gap in symlink alias handling allowed certain workspace-only write paths to be treated as in-boundary even when they could resolve outside the workspace/sandbox root. Affected Packages / Versions - Package: npm openclaw - Affected versions: = 2026.2.25 - Late...

5.8AI score
Exploits0References3Affected Software1
Total number of security vulnerabilities33225