{"uuid": "32b400ed-b180-4454-a78b-03dab6e34809", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-25253", "type": "seen", "source": "https://bsky.app/profile/bluehatone.bsky.social/post/3moket6ftvp2u", "content": "OpenClaw is not just chat. It is a robot super user with 24/7 access. Researchers found thousands of agents exposed online with weak auth and plaintext secrets. CVE-2026-25253 can steal tokens by a crafted URL, near CVSS 8.8. Use secrets manager and least privilege now.", "creation_timestamp": "2026-06-18T08:09:34.634565Z"}