CVE-2026-28465 — OpenClaw's voice-call plugin versions before 2026.2.3 contain an improper authentication vulnerability in webhook verification that allows remote attackers to bypass verification by supplying untr — CVE Database · The Intelligence Room