Thanks to visit codestin.com
Credit goes to github.com

Skip to content

GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

Unreviewed advisories

CC-BY-4.0 License
Language support
About GitHub Advisory Database
Filter advisories

Filter advisories

GitHub reviewed advisories
All reviewed
5,000+
Composer
5,000+
Erlang
41
GitHub Actions
41
Go
3,058
Maven
5,000+
npm
4,845
NuGet
825
pip
4,397
Pub
12
RubyGems
988
Rust
1,147
Swift
50
Unreviewed advisories
All unreviewed
5,000+

26,556 advisories

Loading
OpenClaw: macOS optional allowlist basename matching could bypass path-based policy Moderate
GHSA-7f4q-9rqh-x36p was published for openclaw (npm) Mar 3, 2026
tdjackey Credited to tdjackey
OpenClaw has system.run shell-wrapper env injection via SHELLOPTS/PS4 can bypass allowlist intent (RCE) Moderate
GHSA-2fgq-7j6h-9rm4 was published for openclaw (npm) Mar 3, 2026
tdjackey Credited to tdjackey
OpenClaw: Node reconnect metadata spoofing could bypass platform-based node command policy High
GHSA-r65x-2hqr-j5hf was published for openclaw (npm) Mar 3, 2026
76embiid21 Credited to 76embiid21
OpenClaw: macOS beta onboarding exposed PKCE verifier via OAuth state Moderate
GHSA-6g25-pc82-vfwp was published for openclaw (npm) Mar 3, 2026
zdi-disclosures Credited to zdi-disclosures
OpenClaw has hook auth rate limiter bypass via IPv4-mapped IPv6 client key variants Moderate
GHSA-5847-rm3g-23mw was published for openclaw (npm) Mar 3, 2026
OpenClaw's avatar symlink traversal can expose out-of-workspace local files Moderate
GHSA-rx3g-mvc3-qfjf was published for openclaw (npm) Mar 3, 2026
tdjackey Credited to tdjackey
OpenClaw has a sandbox network isolation bypass via docker.network=container:<id> Moderate
GHSA-ww6v-v748-x7g9 was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw: Node system.run approval bypass via parent-symlink cwd rebind High
GHSA-f7ww-2725-qvw2 was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw: Message action attachment hydration bypasses local media root checks when sandboxRoot is unset High
GHSA-fqcm-97m6-w7rm was published for openclaw (npm) Mar 2, 2026
GCXWLP Credited to GCXWLP
OpenClaw: system.run approval identity mismatch could execute a different binary than displayed High
GHSA-hwpq-rrpf-pgcq was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw: Gateway /tools/invoke tool escalation + ACP permission auto-approval High
GHSA-943q-mwmv-hhvh was published for openclaw (npm) Mar 2, 2026
aether-ai-agent Credited to aether-ai-agent
OpenClaw Vulnerable to Remote Code Execution via Node Invoke Approval Bypass in Gateway Critical
GHSA-gv46-4xfq-jv58 was published for openclaw (npm) Mar 2, 2026
222n5 Credited to 222n5
OpenClaw vulnerable to path traversal (Zip Slip) in archive extraction during explicit installation commands Moderate
GHSA-v892-hwpg-jwqp was published for openclaw (npm) Mar 2, 2026
markmusson Credited to markmusson
OpenClaw's sandbox skill mirroring path traversal vulnerability could write outside the sandbox workspace High
GHSA-xw4p-pw82-hqr7 was published for openclaw (npm) Mar 2, 2026
1seal Credited to 1seal
OpenClaw has non-constant-time token comparison in hooks authentication Moderate
GHSA-jmm5-fvh5-gf4p was published for openclaw (npm) Mar 2, 2026
akhmittra Credited to akhmittra
OpenClaw: Config writes could persist resolved ${VAR} secrets to disk Moderate
GHSA-47q7-97xp-m272 was published for openclaw (npm) Mar 2, 2026
Abeyron Credited to Abeyron
OpenClaw has Zip Slip path traversal in tar archive extraction High
GHSA-p25h-9q54-ffvw was published for openclaw (npm) Mar 2, 2026
xuemian168 Credited to xuemian168 and ShangzhiXu ShangzhiXu ShangzhiXu
OpenClaw gateway agents.files symlink escape allowed out-of-workspace file read/write Critical
GHSA-fgvx-58p6-gjwc was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw Node system.run approval context-binding weakness in approval-enabled host=node flows Moderate
GHSA-hjvp-qhm6-wrh2 was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw voice-call media stream validated streams after upgrade, which could allow pre-start unauthenticated sockets to increase resource pressure High
GHSA-mfg5-7q5g-f37j was published for @openclaw/voice-call (npm) Mar 2, 2026
jiseoung Credited to jiseoung
OpenClaw's inbound media downloads could exceed configured byte limits before rejection across multiple channels Moderate
GHSA-rxxp-482v-7mrh was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw Canvas Path Traversal Information Disclosure Vulnerability High
GHSA-jq4x-98m3-ggq6 was published for openclaw (npm) Mar 2, 2026
zdi-disclosures Credited to zdi-disclosures
OpenClaw's exec allow-always can be bypassed via unrecognized multiplexer shell wrappers (busybox/toybox sh -c) Moderate
GHSA-gwqp-86q6-w47g was published for openclaw (npm) Mar 2, 2026
jiseoung Credited to jiseoung
OpenClaw: Node exec approvals could be replayed across nodes Moderate
GHSA-6x2m-hqfw-hvpj was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
OpenClaw's allow-always wrapper persistence could bypass future approvals and enable command execution Moderate
GHSA-6j27-pc5c-m8w8 was published for openclaw (npm) Mar 2, 2026
tdjackey Credited to tdjackey
ProTip! Advisories are also available from the GraphQL API
CC-BY-4.0 License
Language support
About GitHub Advisory Database