OpenClaw Arbitrary File Write Vulnerability via Untrusted sessionFile Path

A vulnerability in OpenClaw versions prior to 2026.2.12 allows authenticated gateway clients to write transcript data to arbitrary locations on the host filesystem. This issue arises because the application fails to properly validate the sessionFile path parameter, enabling users to specify paths outside the designated sessions directory. As a result, attackers could create files and append data repeatedly, potentially leading to configuration corruption or a denial-of-service condition.

Impact

Exploitation of this vulnerability could allow for arbitrary file creation and data appending on the host filesystem, potentially causing configuration issues or a denial-of-service condition.

Reproduction

To reproduce this vulnerability, an authenticated gateway client can send a request that includes a sessionFile path parameter pointing to a location outside the default sessions directory. This can be done through the application's gateway interface by specifying an unsafe path in the sessionFile parameter.

Remediation

Users can update to OpenClaw version 2026.2.12 or later, with version 2026.2.13 recommended.