depthfirst.com (https://depthfirst.com/post/1-click-rce-to-steal-your-moltbot-data-and-keys)
depthfirst | 1-Click RCE To Steal Your Moltbot Data and Keys (https://depthfirst.com/post/1-click-rce-to-steal-your-moltbot-data-and-keys)
A technical teardown of a 1-click RCE against OpenClaw (formerly Moltbot/ClawdBot), a viral open-source AI assistant trusted by 100,000+ developers with high-privilege access. See how a settings logic flaw and a WebSocket pivot turn a single webpage...
GitHub (https://github.com/openclaw/openclaw/security/advisories/GHSA-g8p2-7wf7-98mq)
1-Click RCE via Authentication Token Exfiltration From gatewayUrl (https://github.com/openclaw/openclaw/security/advisories/GHSA-g8p2-7wf7-98mq)
## Summary The Control UI trusts `gatewayUrl` from the query string without validation and auto-connects on load, sending the stored gateway token in the WebSocket connect payload. Clicking a...
|本站内容来源网友投稿或网络转载,如果有侵权的内容,请联系我们删除。|小黑屋|人人为我,我为人人!|
星颖资源网
发表于 2026-2-2 14:55:28
