{"id":82210,"date":"2026-07-19T02:47:01","date_gmt":"2026-07-18T23:17:01","guid":{"rendered":"https:\/\/afaghhosting.net\/blog\/cve-2026-16197-sipeed-picoclaw-group-message-feishu_64-go-handlemessagereceive-authorization\/"},"modified":"2026-07-19T02:47:01","modified_gmt":"2026-07-18T23:17:01","slug":"cve-2026-16197-sipeed-picoclaw-group-message-feishu_64-go-handlemessagereceive-authorization","status":"publish","type":"post","link":"https:\/\/afaghhosting.net\/blog\/cve-2026-16197-sipeed-picoclaw-group-message-feishu_64-go-handlemessagereceive-authorization\/","title":{"rendered":"CVE-2026-16197 &#8211; Sipeed PicoClaw Group Message feishu_64.go handleMessageReceive authorization"},"content":{"rendered":"<p>CVE ID :CVE-2026-16197<\/p>\n<p>  Published : July 18, 2026, 11:17 p.m. | 23\u00a0minutes ago<\/p>\n<p>  Description :A security vulnerability has been detected in Sipeed PicoClaw up to 0.2.9. The affected element is the function handleMessageReceive of the file pkg\/channels\/feishu\/feishu_64.go of the component Group Message Handler. Such manipulation leads to missing authorization. The attack can be launched remotely. The exploit has been disclosed publicly and may be used. The reported GitHub issue was closed automatically due to inactivity.<\/p>\n<p>  Severity: 6.5 | MEDIUM<\/p>\n<p>  Visit the link for more details, such as CVSS details, affected products, timeline, and more&#8230;\u00a0<\/p>\n","protected":false},"excerpt":{"rendered":"<p>CVE ID :CVE-2026-16197 Published : July 18, 2026, 11:17 p.m. | 23\u00a0minutes ago Description :A security vulnerability has been detected in Sipeed PicoClaw up to 0.2.9. The affected element is the function handleMessageReceive of the file pkg\/channels\/feishu\/feishu_64.go of the component Group Message Handler. Such manipulation leads to missing authorization. The attack can be launched remotely. &hellip;<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[26],"tags":[],"class_list":["post-82210","post","type-post","status-publish","format-standard","hentry","category-vulnerability"],"_links":{"self":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/82210","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/comments?post=82210"}],"version-history":[{"count":0,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/posts\/82210\/revisions"}],"wp:attachment":[{"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/media?parent=82210"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/categories?post=82210"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/afaghhosting.net\/blog\/wp-json\/wp\/v2\/tags?post=82210"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}