GHSA-c4qg-j8jg-42q5

Source

https://github.com/advisories/GHSA-c4qg-j8jg-42q5

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-c4qg-j8jg-42q5/GHSA-c4qg-j8jg-42q5.json

JSON Data

https://api.osv.dev/v1/vulns/GHSA-c4qg-j8jg-42q5

Downstream

MINI-gw26-hhwj-28w3

Published

2026-04-25T23:48:29Z

Modified

2026-05-05T16:07:46.139354Z

Severity

1.7 (Low) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N/E:U CVSS Calculator

Summary

OpenClaw: QQBot direct media upload skipped URL SSRF validation

Details

Affected Packages / Versions

Package: openclaw (npm)
Affected versions: < 2026.4.20
Patched version: 2026.4.20

Impact

The QQBot direct-upload media path could forward attacker-controlled image URLs without applying the SSRF validation used by the local download path. This could make configured QQBot media delivery request or relay URLs the operator did not intend to allow.

The affected path is limited to QQBot outbound media handling and does not expose arbitrary local files. Severity is low.

Fix

OpenClaw now validates QQBot direct-upload media URLs before uploadC2CMedia and uploadGroupMedia direct-upload calls.

Fix commit:

49db424c8001f2f419aad85f434894d8d85c1a09

Release

Fixed in OpenClaw 2026.4.20.

Database specific

{
    "nvd_published_at": null,
    "severity": "LOW",
    "github_reviewed_at": "2026-04-25T23:48:29Z",
    "cwe_ids": [
        "CWE-918"
    ],
    "github_reviewed": true
}

References

Affected packages

npm / openclaw

Package

Name: openclaw; View open source insights on deps.dev
Purl: pkg:npm/openclaw

Affected ranges

Type: SEMVER
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

2026.4.20

Database specific

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2026/04/GHSA-c4qg-j8jg-42q5/GHSA-c4qg-j8jg-42q5.json"