ClawJacked vulnerability lets any website silently hijack local OpenClaw agents via WebSocket

Oasis Security found a vulnerability chain where any website can take full agent control via localhost WebSocket.

A network firewall that blocks WebSocket hijack attacks on local OpenClaw agents before malicious sites connect

Any website can silently connect to your local OpenClaw agent via WebSocket brute-force and steal data, execute commands, or exfiltrate credentials. The ClawJacked vulnerability (85K+ virality, CVSS 8.8-9.9) affects every default OpenClaw install running on localhost. Existing patches only cover specific CVEs while new WebSocket attack vectors keep appearing weekly. This tool runs as a local proxy between the browser and the OpenClaw gateway, validating every WebSocket connection against an allowlist of trusted origins, blocking unauthorized handshakes, and logging all connection attempts for forensic review.

SECURITYCLIDEVTOOLOPEN-SOURCE

CompetitiveView Opportunity →

Social Proof 0 sources

Virality Score

across 0 platforms

Details

Signalissue

Ecosystem—

Sources0

Platforms0

Updated8d ago

Trend→ stable

Top ideas

All ideas →

26.1MA pre-publish scanner that strips source maps, secrets, and internal code from npm packages before they ship to the registry 2.2MA routing middleware that pairs an expensive advisor model with a cheap executor model for OpenClaw agents, cutting API costs by 80% while maintaining output quality 892.2KA web dashboard that finds revenue gaps and saturated niches across 180+ OpenClaw startups in real time

Related signals

All signals →

93KAgents of Chaos: 38 Researchers Deploy 6 OpenClaw Agents — 11 Critical Failure Patterns in 14 Days 35.7KCapability Evolver — #1 ClawHub Skill (35K Downloads) Caught Exfiltrating Data to ByteDance Feishu 13.3KIronClaw: NEAR AI Rust OpenClaw Rewrite — WASM Sandbox, LLM Never Touches Secrets (11.3K Stars)