Components
Vulnerabilities
Pricing
MCP
Docs
Sign up
Login
Find vulnerabilities. Fix fast with AI.
Search components by package, version, or CVE to get started.
Ecosystem
Package
Version
Vulnerabilities
sonatype-2026-000458
sonatype-2026-000458
openclaw - Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')
Published Feb 18, 2026
https://github.com/advisories/GHSA-3hcm-ggvf-rch5
CVSS Score
Critical
9.2
Components Impacted
Components Impacted
Security Details
Security Details
Sonatype Research
Sonatype Research
Ecosystem
Package
Version
Ecosystem
Package
Version
npm
openclaw
0.0.1
npm
openclaw
2026.1.29-beta.1
npm
openclaw
2026.1.29-beta.2
npm
openclaw
2026.1.29-beta.3
npm
openclaw
2026.1.29-beta.4
npm
openclaw
2026.1.29-beta.5
npm
openclaw
2026.1.29-beta.7
npm
openclaw
2026.1.29
npm
openclaw
2026.1.30
npm
openclaw
2026.2.1
npm
openclaw
2026.2.2-1
npm
openclaw
2026.2.2-2
npm
openclaw
2026.2.2-3
1-13 of 13
sonatype-2026-000458 | Components Impacted | Sonatype Guide | Sonatype Guide
