CVE-2026-28461 | OpenClaw up to 2026.3.0 Zalo Webhook Endpoint allocation of resources (GHSA-wr6m-jg37-68xh)

Inserito da Angelo Barbosa | Mar 19, 2026 | CVE

A vulnerability marked as problematic has been reported in OpenClaw up to 2026.3.0. Affected by this issue is some unknown functionality of the component Zalo Webhook Endpoint. This manipulation causes allocation of resources.

The identification of this vulnerability is CVE-2026-28461. It is possible to initiate the attack remotely. There is no exploit available.

It is suggested to upgrade the affected component.

CVE-2026-28461 | OpenClaw up to 2026.3.0 Zalo Webhook Endpoint allocation of resources (GHSA-wr6m-jg37-68xh)

Post correlati

CVE-2025-6435 | Mozilla Firefox up to 139 File Extension

CVE-2025-22564 | Faaiq Pretty Url Plugin up to 1.5.4 on WordPress cross site scripting

CVE-2025-5310 | Dover Fueling Solutions ProGauge MagLink LX consoles Target Communication Framework Interface missing authentication (icsa-25-168-05)

CVE-2026-24139 | franklioxygen MyTube up to 1.7.78 Database Export Endpoint authorization (GHSA-hhc3-8q8c-89q7)