Product

OpenClaw (>= 2026.4.7, < 2026.4.10)

1 brief RSS

OpenClaw Sandbox Media Normalization Bypass via Discord Event Cover Image

OpenClaw versions 2026.4.7 before 2026.4.10 fail to normalize Discord event cover image parameters in sandbox media processing, allowing attackers to bypass media normalization and inject host-local media references into channel action paths expecting normalized media.

OpenClaw vulnerability normalization bypass sandbox escape

2r 1t 1c 2h ago