CVE-2026-28476 | OpenClaw up to 2026.2.13 server-side request forgery (GHSA-pg2v-8xwh-qhcc)

Inserito da Angelo Barbosa | Mar 6, 2026 | CVE

A vulnerability was found in OpenClaw up to 2026.2.13. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation results in server-side request forgery.

This vulnerability is cataloged as CVE-2026-28476. The attack may be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2026-28476 | OpenClaw up to 2026.2.13 server-side request forgery (GHSA-pg2v-8xwh-qhcc)

Post correlati

CVE-2024-11366 | SEO Landing Page Generator Plugin up to 1.66.2 on WordPress cross site scripting

CVE-2025-10948 | MikroTik RouterOS 7 libjson.so /rest/ip/address/print parse_json_element buffer overflow

CVE-2024-22078 | Elspec G5 Digital Fault Recorder up to 1.1.4.15 Network Configuration Script default permission

CVE-2024-37228 | InstaWP Connect Plugin up to 0.1.0.38 on WordPress code injection