Search Vulnerabilities

OpenClaw < 2026.3.28 - Webhook Replay via Query Parameter Reordering in Plivo V3

Plaintext secure-mail.html

Versions of the package jsrsasign before 11

Missing Cryptographic Step in Data Modem

Unauthenticated/unencrypted trailing bytes with low-level OCB function calls

Deno node:crypto doesn't finalize cipher

Windows Kerberos Elevation of Privilege Vulnerability

The Bastion ttyrec files are not signed after encryption by the osh-encrypt-rsync script

frost-core: refresh shares with smaller min_signers will reduce group security

In MbedTLS 3

RLPx 5 has two CTR streams based on the same key, IV, and nonce

fossasia open-event-server Mail Verification mail.py send_email_change_user_email reliance on obfuscation or encryption of security-relevant inputs...

Missing Cryptographic Step

ALTBN128_ADD, ALTBN128_MUL, ALTBN128_PAIRING precompile functions do not check if points are on curve

sigstore-python has insufficient validation of integration timestamp during verification

Cisco Touch 10 Device Insufficient Identity Verification Vulnerability

Windows Kerberos Information Disclosure Vulnerability

Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access

xkeys Seal encryption used fixed key for all encryption

uthenticode EKU validation bypass