OpenClaw affected by cross-site request forgery (CSRF) through loopback browser mutation endpoints

High severity GitHub Reviewed Published Feb 15, 2026 in openclaw/openclaw • Updated Feb 20, 2026

No open alerts for this advisory

Give feedback on Dependabot alerts