A vulnerability was detected in mosaxiv clawlet up to 0.2.10. This impacts the function read_file/write_file/edit_file of the file tools/fs_ops.go of the component File Tools. Performing a manipulation results in link following. The attack needs to be approached locally. The reported GitHub issue was closed with the label 'not planned'. Users of mosaxiv clawlet up to 0.2.10 should review the vulnerability [truncated]
A security vulnerability has been detected in mosaxiv clawlet up to 0.2.10. This affects the function tools.webFetch of the file tools/tool_web_fetch.go. Such manipulation leads to server-side request forgery. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The reported GitHub issue was closed with the label 'not planned'. This vulnerability impacts users of m [truncated]
A weakness has been identified in mosaxiv clawlet up to 0.2.10, specifically in the function web_fetch of the file tools/tool_web_fetch.go of the component IPv4 Handler. This manipulation of the argument url causes server-side request forgery. The attack can be initiated remotely. This vulnerability has a CVSS score of 2.1 and is considered Low severity. Users of mosaxiv clawlet up to 0.2.10 should be awa [truncated]
A security flaw has been discovered in mosaxiv clawlet up to 0.2.10, affecting the function guardExecCommand of the file tools/tool_exec.go in the exec Safety Guard component. This vulnerability results in protection mechanism failure, allowing for remote attacks. The CVSS score for this vulnerability is 2.1, indicating a low severity. The exploit has been released to the public and may be used for attack [truncated]