OpenClaw < 2026.3.31 - Unsafe Request Body Replay via fetchWithSsrFGuard Cross-Origin Redirects

OpenClaw before 2026.3.31 (patched in 2026.4.8) contains a request body replay vulnerability in fetchWithSsrFGuard that allows unsafe request bodies to be resent across cross-origin redirects. Attackers can exploit this by triggering redirects to exfiltrate sensitive request data or headers to unintended origins.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

指向未可信站点的URL重定向(开放重定向)

OpenClaw 输入验证错误漏洞

OpenClaw是OpenClaw开源的一个智能人工助理。 OpenClaw 2026.3.31之前版本存在输入验证错误漏洞，该漏洞源于fetchWithSsrFGuard中存在请求体重放漏洞，可能导致不安全的请求体在跨域重定向中被重新发送，从而泄露敏感请求数据或标头。

N/A

N/A