OpenClaw Server-Side Request Forgery Vulnerability in Zalo Plugin
Vulnerability
A server-side request forgery (SSRF) vulnerability has been identified in OpenClaw versions prior to 2026.4.22. The issue resides in the Zalo plugin's sendPhoto function, which does not properly validate outbound photo URLs against the SSRF guard. This oversight allows attackers to bypass SSRF protections by sending malicious photo URLs to the Zalo Bot API, potentially gaining unauthorized access to internal resources.
Impact
Exploitation of this vulnerability could lead to unauthorized access to internal resources by bypassing SSRF protections.
Reproduction
The vulnerability can be reproduced by sending a request to the Zalo plugin's sendPhoto function with a photo URL that is not validated by the SSRF guard. This can be done by using a URL that points to a resource that should be protected by the SSRF policy, such as a private network address or a non-http URL.
Remediation
Users can update to OpenClaw version 2026.4.22 or later, where this vulnerability has been fixed.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.