CVE-2026-31989 | OpenClaw up to 2026.3.0 Network Request web_search server-side request forgery (GHSA-g99v-8hwm-g76g)

Inserito da Angelo Barbosa | Mar 19, 2026 | CVE

A vulnerability, which was classified as critical, was found in OpenClaw up to 2026.3.0. This impacts the function web_search of the component Network Request Handler. Such manipulation leads to server-side request forgery.

This vulnerability is listed as CVE-2026-31989. The attack may be performed from remote. There is no available exploit.

You should upgrade the affected component.

CVE-2026-31989 | OpenClaw up to 2026.3.0 Network Request web_search server-side request forgery (GHSA-g99v-8hwm-g76g)

Post correlati

CVE-2025-9183 | Mozilla Firefox up to 141 Address Bar clickjacking

CVE-2024-3197 | Plus Addons for Elementor Plugin up to 5.4.2 on WordPress Custom Attributes cross site scripting

CVE-2024-36532 | kruise 1.6.2 Service Account Token permission

CVE-2025-12454 | OpenText Vertica up to 25.1.x Management Console cross site scripting