Critical Vulnerability Discovered in OpenClaw Personal Assistant

A critical vulnerability (CVE-2026-25253) has been discovered in OpenClaw, an open-source personal assistant, by depthfirst General Security Intelligence. This vulnerability allows for remote code execution (RCE) with a single click. The issue lies in the handling of URL parameters, particularly gatewayUrl, which is accepted without validation and persisted in local storage. This enables an attacker to steal the authentication token and access the victim's personal data, including messages and Stripe API keys. The exploit bypasses localhost network restrictions via Cross-Site WebSocket Hijacking (CSWSH) and disables security protections via the API. The vulnerability affects all versions up to v2026.1.24-1. A patch has been released, adding a modal confirmation for gateway URLs.