OpenClaw Path Traversal Vulnerability in Archive Extraction Allows Arbitrary File Writes

A path traversal vulnerability, also known as a Zip Slip issue, has been identified in OpenClaw versions 2026.1.16-2 prior to 2026.2.14. This vulnerability occurs during archive extraction when installation commands are executed, allowing crafted archives to write files outside the intended directory. The issue can be exploited by using the 'skills install', 'hooks install', 'plugins install', or 'signal install' commands, potentially leading to unauthorized file writes, persistence, or code execution.

Impact

Exploitation of this vulnerability allows for arbitrary file writes outside the intended directory, with the potential for persistence or code execution, especially if a user is convinced to install a manipulated archive.

Reproduction

To reproduce this vulnerability, download a crafted archive that exploits the path traversal issue and extract it using one of the affected installation commands, such as 'skills install' or 'signal install'. The extraction process will write files to unauthorized locations, bypassing normal directory restrictions.

Remediation

Users can update to OpenClaw version 2026.2.14 or later to address this vulnerability.