Jackhax

**Name of the Vulnerable Software and Affected Versions** Vaultwarden versions prior to 1.35.5 **Description** The 'get org collections details' endpoint "/api/organizations/{org id}/collections/details" lacks the `has full access()` authorization check. This allows a user with the Manager role, who has `accessAll` set to False and no assigned collections, to retrieve the names, UUIDs, user-to-collection mappings, and group-to-collection mappings for all collections within the organization. **Recommendations** Update to version 1.35.5.

**Name of the Vulnerable Software and Affected Versions** Deno versions prior to 2.6.8 **Description** A command injection issue exists in Deno's `node:child process` implementation. The issue allows for arbitrary command execution through crafted input provided to the `spawnSync` function when the `shell` option is set to true. A proof-of-concept demonstrates the creation of a file (`/tmp/rce proof`) to confirm successful exploitation. The vulnerable code utilizes the `Deno.execPath()` function and the `spawnSync` function with the `shell: true` option, allowing for command injection via newline characters in the input. The vulnerable parameter is the input to the `spawnSync` function. **Recommendations** Update to Deno version 2.6.8 or later.

**Name of the Vulnerable Software and Affected Versions** OpenClaw versions 2026.1.29-beta.1 through 2026.2.13 **Description** The software contains a flaw in the sandbox browser bridge server that does not require gateway authentication, potentially allowing local attackers to access browser control endpoints. A local attacker could enumerate tabs, retrieve WebSocket URLs, execute JavaScript, and exfiltrate cookies and session data from authenticated browser contexts. The issue affects versions starting with 2026.1.29-beta.1. The bridge server exposes endpoints such as `/profiles`, `/tabs`, `/tabs/open`, and `/agent/*`. Exploitation is limited to the local machine, but can lead to full browser-session compromise for sandboxed browser usage. The vulnerable component is the sandbox browser bridge server. **Recommendations** Upgrade to version 2026.2.14. Alternatively, disable the sandboxed browser by setting `agents.defaults.sandbox.browser.enabled=false`.