Blee72

**Name of the Vulnerable Software and Affected Versions** OpenClaw versions prior to 2026.4.7 **Description** The memory-wiki ingest feature allows authenticated Gateway operators with `operator.write` scope to read local files outside of the intended ingest sources. By specifying arbitrary local file paths, an attacker with these permissions can import file content into the wiki memory, bypassing established access restrictions. **Recommendations** Update to version 2026.4.7 or later.