OpenClaw Tlon Urbit Extension Server-Side Request Forgery Vulnerability

A server-side request forgery (SSRF) vulnerability has been identified in the OpenClaw application, specifically in versions prior to 2026.2.14. This vulnerability resides within the optional Tlon Urbit extension, which accepts user-provided base URLs for authentication without adequate validation. As a result, attackers who can manipulate the configured Urbit URL may cause the gateway to send HTTP requests to arbitrary hosts, including internal addresses.

Impact

Exploitation of this vulnerability could lead to unauthorized HTTP requests being made to internal or external hosts, potentially allowing an attacker to access sensitive information or services.

Reproduction

To reproduce this vulnerability, first install OpenClaw version 2026.2.13 or earlier and enable the Tlon Urbit extension. Then, configure an Urbit URL that points to a private or internal address. Once this is set, the application will make requests to the specified URL without proper validation, allowing for SSRF exploitation.

Remediation

Users can update to OpenClaw version 2026.2.14 or later, where this vulnerability has been patched. The Tlon extension now includes validation for the base URL and blocks requests to private/internal hosts by default, with an option to allow such networks if explicitly configured.