Tag

Cve-2026-32913

1 brief RSS

OpenClaw Improper Header Validation Leads to Credential Leakage

OpenClaw before 2026.3.7 is vulnerable to improper header validation in fetchWithSsrFGuard, allowing attackers to intercept sensitive authorization headers via cross-origin redirects.

cve-2026-32913 credential-access header-injection openclaw

2r 1t Mar 24, 2026