OpenClaw 被曝 1 次点击可触发 RCE,v2026.1.28 及以下受影响
https://cdn3.ldstatic.com/original/4X/2/b/f/2bf7751ce16f69eef0b1a40132dd504fb43966d9.pnghttps://cdn3.ldstatic.com/original/4X/f/9/4/f94937feec381728953c571ab30f3dd665a46b09.png
depthfirst.com (https://depthfirst.com/post/1-click-rce-to-steal-your-moltbot-data-and-keys)
https://cdn3.ldstatic.com/optimized/4X/9/9/e/99e4b5884870d432dfdb7e64f8162aeba8198c3a_2_689x394.jpeg
depthfirst | 1-Click RCE To Steal Your Moltbot Data and Keys (https://depthfirst.com/post/1-click-rce-to-steal-your-moltbot-data-and-keys)
A technical teardown of a 1-click RCE against OpenClaw (formerly Moltbot/ClawdBot), a viral open-source AI assistant trusted by 100,000+ developers with high-privilege access. See how a settings logic flaw and a WebSocket pivot turn a single webpage...
https://cdn3.ldstatic.com/original/4X/b/a/d/bad3e5f9ad67c1ddf145107ce7032ac1d7b22563.svg
GitHub (https://github.com/openclaw/openclaw/security/advisories/GHSA-g8p2-7wf7-98mq)
https://cdn3.ldstatic.com/optimized/4X/6/b/2/6b27f7b00948ac2e53afea32644a49e896ddf6f4_2_690x345.png
1-Click RCE via Authentication Token Exfiltration From gatewayUrl (https://github.com/openclaw/openclaw/security/advisories/GHSA-g8p2-7wf7-98mq)
## Summary The Control UI trusts `gatewayUrl` from the query string without validation and auto-connects on load, sending the stored gateway token in the WebSocket connect payload. Clicking a...
页:
[1]