CVE-2026-16081 | Sipeed PicoClaw up to 0.2.9 web/backend/api/auth.go cross-site request forgery (Issue 3072)
A vulnerability classified as problematic was found in Sipeed PicoClaw up to 0.2.9. The affected element is an unknown function of the file web/backend/api/auth.go. Executing a manipulation can lead to cross-site request forgery.
This vulnerability is tracked as CVE-2026-16081. The attack can be launched remotely. Moreover, an exploit is present.
Applying a patch is advised to resolve this issue.VulDB Recent EntriesRead More