“ClawJacked” Vulnerability Allows Malicious Websites to Take Control of OpenClaw
Privacy Guides Community [Unofficial]
March 2, 2026
Oasis Security discovered a vulnerability in the popular OpenClaw agentic AI software that allows websites to silently bruteforce access to a locally running instance and take it over.
This is a companion discussion topic for the original entry at https://www.privacyguides.org/news/2026/03/02/clawjacked-vulnerability-allows-malicious-websites-to-take-control-of-openclaw
Discussion in the ATmosphere