GitHub Advisory Database
Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.
GitHub reviewed advisories
Unreviewed advisories
9 advisories
OpenClaw: Synology Chat reply delivery could be rebound through username-based user resolution.
High
GHSA-wv46-v6xc-2qhf
was published
for
openclaw
(npm)
Mar 26, 2026
OpenClaw's Trusted-proxy Control UI sessions retain privileged scopes without device identity on device-less allow paths
High
GHSA-48vw-m3qc-wr99
was published
for
openclaw
(npm)
Mar 26, 2026
OpenClaw: `session_status` sessionId resolution bypasses sandboxed session-tree visibility
High
GHSA-q2qc-744p-66r2
was published
for
openclaw
(npm)
Mar 29, 2026
OpenClaw: CLI Remote Onboarding Persists Unauthenticated Discovery Endpoint and Exfiltrates Gateway Credentials
High
GHSA-3cw3-5vxw-g2h3
was published
for
openclaw
(npm)
Mar 31, 2026
OpenClaw gateway exec allow-always over-trusts positional carrier executables
High
GHSA-p4x4-2r7f-wjxg
was published
for
openclaw
(npm)
Apr 1, 2026
OpenClaw: PIP_INDEX_URL and UV_INDEX_URL bypass host exec env sanitization and redirect Python package-index traffic
High
GHSA-7ggg-pvrf-458v
was published
for
openclaw
(npm)
Apr 2, 2026
OpenClaw: Workspace `.env` can override the bundled hooks root and load attacker hook code
High
GHSA-3qpv-xf3v-mm45
was published
for
openclaw
(npm)
Apr 2, 2026
OpenClaw: Workspace `.env` can override the bundled plugin trust root
High
GHSA-qcj9-wwgw-6gm8
was published
for
openclaw
(npm)
Apr 3, 2026
OpenClaw: macOS Tailnet DNS Spoofing & Credential Exfiltration
High
GHSA-q9w8-cf67-r238
was published
for
openclaw
(npm)
Apr 3, 2026
ProTip!
Advisories are also available from the
GraphQL API