OpenClaw: Nextcloud Talk display-name allowlist bypass via mutableactor.namefield, February 2026.https://github.com/openclaw/ openclaw/security/advisories

GitHub Security Advisory GHSA-r5h9 · 2026

1 Pith paper cite this work. Polarity classification is still indexing.

1 Pith paper citing it

browse 1 citing papers

representative citing papers

A Security Analysis of the OpenClaw AI Agent Framework

cs.CR · 2026-03-29 · conditional · novelty 6.0 · 2 refs

Security analysis of OpenClaw reveals composable RCE paths from LLM tool calls, invalid closed-world assumptions in exec allowlists, and plugin-based attacks that bypass runtime policy.

citing papers explorer

Showing 1 of 1 citing paper.

A Security Analysis of the OpenClaw AI Agent Framework cs.CR · 2026-03-29 · conditional · none · ref 14 · 2 links
Security analysis of OpenClaw reveals composable RCE paths from LLM tool calls, invalid closed-world assumptions in exec allowlists, and plugin-based attacks that bypass runtime policy.

OpenClaw: Nextcloud Talk display-name allowlist bypass via mutableactor.namefield, February 2026.https://github.com/openclaw/ openclaw/security/advisories

fields

years

verdicts

representative citing papers

citing papers explorer