8421bit MiniClaw Path Traversal Vulnerability in executeSkillScript Function

A path traversal vulnerability has been identified in 8421bit MiniClaw versions prior to the patch commit e8bd4e17e9428260f2161378356affc5ce90d6ed. The issue resides in the 'isPathInside' function within 'src/kernel.ts', specifically in the 'executeSkillScript' component. This vulnerability allows for unauthorized file access by exploiting unsanitized user inputs to traverse directories and access sensitive files on the server.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive system files, such as '/etc/passwd', and the potential execution of arbitrary system binaries outside the designated skill directory. This creates a risk of full server file system disclosure.

Reproduction

The vulnerability can be reproduced by invoking the 'executeSkillScript' function with a 'skillName' parameter that includes directory traversal sequences (e.g., '../../../../etc') and a 'scriptFile' parameter that targets a file like 'passwd' within the traversed directory. This will bypass the normal path restrictions and access the sensitive file.

Remediation

Users are advised to update to the version of 8421bit MiniClaw that includes the patch for this vulnerability.