AI Sec Watch: A Security Intelligence Platform for AI Systems

Luu, T.J.

GHSA-wh94-p5m6-mr7j: OpenClaw Discord moderation authorization used untrusted sender identity in tool-driven flows

lowvulnerability

security

Source: GitHub Advisory DatabaseFebruary 20, 2026CVE-2026-27484

Summary

OpenClaw, a Discord moderation bot package, had a security flaw where moderation actions like timeout, kick, and ban used untrusted sender identity from user requests instead of verified system context, allowing non-admin users to spoof their identity and perform these actions. The vulnerability affected all versions up to 2026.2.17 and was fixed in version 2026.2.18.

Solution / Mitigation

Moderation authorization was updated to use trusted sender context (requesterSenderId) instead of untrusted action parameters, and permission checks were added to verify the bot has required guild capabilities for each action. Update to version 2026.2.18 or later.

Vulnerability Details

EPSS (30-day exploit probability)

EPSS: 0.0%

Classification

Attack SophisticationTrivial

Impact (CIA+S)

integrity

AI Component TargetedAgent

Affected Vendors

Affected Packages

openclaw@< 2026.2.18 (fixed: 2026.2.18)

Original source: https://github.com/advisories/GHSA-wh94-p5m6-mr7j

First tracked: February 20, 2026 at 07:00 PM

Classified by LLM (prompt v3) · confidence: 85%