CVE-2026-15627
MEDIUM SEVERITYCVSS Score & Metrics
Base Score
4.3 / 10
Vector String
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Vulnerability Description
A vulnerability was identified in nextlevelbuilder GoClaw up to 3.13.3-beta.3. This vulnerability affects the function handleNavigate of the file pkg/browser/tool.go. Such manipulation of the argument args.targetUrl leads to information disclosure. The attack may be performed from remote. The exploit is publicly available and might be used.
Vulnerability Details
Published Date
Last Modified
CWE ID
CWE-200
Source
NVD
Vendor
nextlevelbuilder
Product
GoClaw
External References
- https://github.com/nextlevelbuilder/goclaw/
- https://github.com/nextlevelbuilder/goclaw/issues/1207
- https://github.com/nextlevelbuilder/goclaw/issues/1207#issuecomment-4760370546
- https://vuldb.com/cve/CVE-2026-15627
- https://vuldb.com/submit/855847
- https://vuldb.com/vuln/378129
- https://vuldb.com/vuln/378129/cti
Discussion (0)
Add Comment
No comments yet. Be the first!