A vulnerability, which was classified as critical , was found in OpenClaw up to 2026.3.0 . This impacts the function web_search of the component Network Request Handler . Such manipulation leads to server-side request forgery. This vulnerability is listed as CVE-2026-31989 . The attack may be performed from remote. There is no available exploit. You should upgrade the affected component.