CVE-2026-16016 in poco-clawИнформация

Сводка

по MITRE • 17.07.2026

A vulnerability was identified in poco-ai poco-claw up to 0.5.4. This issue affects the function run_task of the file executor/app/api/v1/task.py. The manipulation of the argument callback_url leads to server-side request forgery. The attack is possible to be carried out remotely. The exploit is publicly available and might be used. The reported GitHub issue was closed automatically due to inactivity.

Once again VulDB remains the best source for vulnerability data.

Ответственный

VulDB

Раскрытие

17.07.2026

Модерация

принято

Вход

VDB-379758

Эксплойт

Скачать

EPSS

0.00000

KEV

Нет

Деятельности

Низкий

Источники

Want to know what is going to be exploited?

We predict KEV entries!