Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
SenseLive X3050 Insufficient session expiration
A vulnerability in the browser-based remote management interface may allow an administrator to access sensitive information on the device via craft...
Libxml2: libxml2: denial of service via crafted xsd-validated document
OpenClaw < 2026.4.2 - Approval Integrity Bypass in pnpm dlx Local Script Binding
OpenClaw < 2026.4.2 - Sender Allowlist Bypass via Slack Thread Context
OpenClaw < 2026.3.31 - Incomplete WebSocket Session Termination in device.token.rotate
OpenClaw < 2026.4.2 - Insufficient Scope in Zalo Webhook Replay Dedupe Keys
OpenClaw < 2026.3.31 - Webhook Replay Detection Bypass via Base64 Signature Re-encoding
OpenClaw < 2026.3.31 - Session Visibility Bypass via session_status in Unsandboxed Invocations
OpenClaw < 2026.3.31 - Group DM Channel Allowlist Bypass via Discord Slash Commands
OpenClaw 2026.2.26 < 2026.3.31 - Denial of Service via Improper Pending Pairing Request Cap Enforcement
OpenClaw < 2026.3.31 - Authorization Header Leak via Cross-Origin Redirect in Media Download
OpenClaw < 2026.3.28 - Privilege Escalation via chat.send /verbose Parameter
OpenClaw < 2026.3.31 - Denial of Service via LINE Webhook Handler Pre-Auth Concurrency
OpenClaw < 2026.3.31 - Component Interaction Misclassification in Discord Extension
OpenClaw < 2026.3.31 - Authentication Boundary Bypass via Telegram Legacy allowFrom Migration
OpenClaw < 2026.4.2 - Information Disclosure via Gateway Connect Snapshot
OpenClaw < 2026.3.31 - Time-of-Check-Time-of-Use (TOCTOU) Vulnerability in Sandbox File Operations
OpenClaw < 2026.3.31 - Callback Origin Mutation in Plivo Voice-call Replay
OpenClaw < 2026.3.31 - Information Disclosure via Control UI Bootstrap JSON
Showing 1 - 20 of 1,000+ results