In a few clicks we can analyze your entire application and see what components are vulnerable in your application, and suggest you quick fixes.
Test your applicationsLearn about Server-side Request Forgery (SSRF) vulnerabilities in an interactive lesson.
Start learningUpgrade openclaw to version 2026.3.28-beta.1 or higher.
openclaw is a 🦞 OpenClaw — Personal AI Assistant
Affected versions of this package are vulnerable to Server-side Request Forgery (SSRF) via the image-generation-provider.ts process. An attacker can access internal network resources or sensitive metadata by supplying crafted URLs to the image download functionality.