目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

安全情报专区 163+

精选漏洞公告、利用分析、安全博客、GHSA Advisory 等情报来源,已自动清洗 + 中英双语呈现,持续更新。

示例:RCE · SSRF · GHSA · 反序列化
筛选
清除筛选
High
node-host模块执行审批绑定漏洞修复及哈希校验机制
github.com · 2026-04-02
openclaw/openclaw
Read more
High
OpenClaw沙箱媒体根目录绕过漏洞(#5034)及修复分析
github.com · 2026-04-02
OpenClaw
Read more
Low
Telegram Bot API 入站媒体下载 IPv4 回退逻辑修复
github.com · 2026-04-02
openclaw/openclaw
Read more
High
OpenClaw bun/deno运行时脚本篡改漏洞修复
github.com · 2026-04-02
OpenClaw invoke-system-run module
Read more
High
openclaw本地文件包含/路径遍历漏洞修复方案
github.com · 2026-04-02
openclaw < 4fd7feb
Read more
精品
High
OpenClaw v2026.4.1 安全修复:CSP绕过/令牌泄露/命令授权绕过
github.com · 2026-04-02
openclaw v2026.3.23 and earlier
Read more
精品
Critical
OpenClaw SCP远程路径Shell注入漏洞及修复
github.com · 2026-04-02
openclaw < v2026.4.1
Read more
High
OpenClaw Gateway设备会话管理漏洞修复
github.com · 2026-04-02
OpenClaw Gateway
Read more
精品
High
Nextcloud Talk Webhook 认证未限流漏洞修复
github.com · 2026-04-02
openclaw/openclaw extensions/nextcloud-talk plugin
Read more
High
本地文件路径遍历/SSRF漏洞修复分析(file:///UNC路径绕过)
github.com · 2026-04-02
openclaw/openclaw
Read more
High
OpenClaw Zalo扩展图片下载未授权访问漏洞修复
GHSA-68ceaf7 · github.com · 2026-04-02
OpenClaw Zalo extension < v2026.3.28-beta.1
Read more
High
OpenClaw Teams消息处理器权限绕过漏洞修复
github.com · 2026-04-02
openclaw extensions/msteams
Read more
Unknown
Google Chat/Zalo扩展路由群组策略绕过漏洞修复
github.com · 2026-04-02
openclaw
Read more
精品
Medium
OpenClaw iMessage附件路径未过滤致SCP命令注入
github.com · 2026-04-02
openclaw <=2026.3.12
Read more
精品
Medium
OpenClaw 通道命令绕过账户 configWrites 权限控制
github.com · 2026-04-02
openclaw <= 2026.3.8
Read more
High
openclaw沙箱路径遍历漏洞(CWE-59/367)分析
github.com · 2026-04-02
openclaw <= 2026.3.8
Read more
Medium
OpenClaw writeFile竞态条件沙箱逃逸漏洞(GHSA-xvx8-77m6-gw6g)
GHSA-xvx8-77m6-gw6g · github.com · 2026-04-02
openclaw < 2026.3.11
Read more
精品
High
OpenClaw tools.exec白名单绕过漏洞分析
github.com · 2026-02-27
openclaw/openclaw <= 2026.2.22-2
Read more
High
OpenCode OC-22 技能打包Zip Slip与符号链接绕过修复
OC-22 · github.com · 2026-02-22
openclaw < latest
Read more
High
Claude CLI Shell注入漏洞修复(execFileSync替代execSync)
github.com · 2026-02-22
openclaw/openclaw (pre-commit 66d7178)
Read more

每篇文章经过自动 HTML→Markdown 清洗 + LLM 去噪 + 中英双语翻译。原始链接保留在文章末尾。

想看哪个安全博客 / 公告源?邮件告诉我们,每周新接 1-2 个。