bug-bounty502
xss297
google257
microsoft221
facebook199
rce189
exploit162
malware159
cve126
apple124
account-takeover117
bragging-post114
privilege-escalation95
csrf87
phishing82
authentication-bypass75
stored-xss74
writeup65
open-source65
reflected-xss62
browser60
access-control59
dos57
web-security57
supply-chain57
ai-agents52
reverse-engineering52
input-validation51
ssrf49
defi48
smart-contract47
cross-site-scripting47
sql-injection44
ethereum44
oauth43
cloudflare43
lfi42
ctf41
react41
race-condition39
api-security39
web339
information-disclosure38
web-application38
burp-suite36
pentest35
aws35
cloud33
smart-contract-vulnerability33
auth-bypass33
0
6/10
Cisco security researchers demonstrate critical vulnerabilities in OpenClaw, a personal AI agent framework, including prompt injection, data exfiltration, and command injection attacks via malicious skills; researchers released an open-source Skill Scanner tool to detect security issues in AI agent skills, revealing 26% of analyzed skills contained at least one vulnerability.
ai-agents
prompt-injection
data-exfiltration
privilege-escalation
supply-chain-risk
malicious-skills
command-injection
credential-leakage
local-execution
security-scanning
threat-analysis
OpenClaw
Clawdbot
Moltbot
Cisco
Cisco AI Threat and Security Research
Claude Skills
OpenAI Codex
Skill Scanner
What Would Elon Do?
Anthropic
Amy Chang
Vineeth Sai Narajala
Idan Habler