CVE-2026-44117 MEDIUM

CVE-2026-44117: OpenClaw < 2026.4.20 - Server-Side Request Forgery in QQBot Direct Media Upload

Vendor Openclaw

Product OpenClaw

Weakness CWE-918 · SSRF

Published May 6, 2026

Last update May 7, 2026

View on NVD All CVEs

CVSS base score

6.3/10

Attack vector Network

Attack complexity Low

Privileges required None

User interaction None

Confidentiality —

Integrity —

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:N/SC:L/SI:N/SA:N

What the vulnerability does

01Description

OpenClaw before 2026.4.20 contains a server-side request forgery vulnerability in QQBot direct media upload that skips URL validation. Attackers can bypass SSRF protections by sending crafted image URLs to uploadC2CMedia and uploadGroupMedia endpoints to relay unintended requests.

Key dates

02Disclosure timeline

May 6, 2026 CVE published

May 7, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-44117

Related vulnerabilities

04Related CVE

CVE-2025-11286 samanhappy MCPHub MCPRouter Service serverController.ts server-side request forgery CVE-2023-51441 Apache Axis 1.x (EOL) may allow SSRF when untrusted input is passed to the service admin HTTP API CVE-2024-5031 MemberPress <= 1.11.29 - Authenticated (Contributor+) Blind Server-Side Request Forgery via mepr-user-file Shortcode CVE-2025-0292 CVE-2026-40100 FastGPT has Unauthenticated SSRF in /api/core/app/mcpTools/runTool via missing CHECK_INTERNAL_IP default