Lucene search
K

1925 matches found

CVE
CVE
added 2026/03/20 12:0 a.m.16 views

CVE-2025-46597

Bitcoin Core 0.13.0 through 29.x is affected by an integer overflow (CVE-2025-46597). The CVSS metrics indicate a network-sourced, low-complexity attack with no privileges required and no user interaction, resulting in high availability impact. Connected sources consistently cite the same descrip...

7.5CVSS5.9AI score0.00278EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2026/03/20 12:0 a.m.9 views

Bitcoin Core 安全漏洞

Bitcoin Core is an open-source client for verifying the validity of blockchain transactions. Versions of Bitcoin Core prior to 29.0 contain security vulnerabilities; these vulnerabilities stem from specially crafted transactions and could lead to denial-of-service attacks...

5.3CVSS5.8AI score0.00325EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/20 12:0 a.m.24 views

CVE-2025-46598

Bitcoin Core through 29.0 allows a denial of service via a crafted transaction...

0.00325EPSS
Exploits0References2
Malwarebytes
Malwarebytes
added 2026/03/11 2:56 p.m.8 views

Sextortion “I recorded you” emails reuse passwords found in disposable inboxes

Our malware removal support team recently flagged a new wave of sextortion emails, with the subject line: “You pervert, I recorded you!” If the message sounds familiar, that's because it's a variation of the long-running "Hello pervert" scam. The email claims the target’s device has been infected...

5.7AI score
Exploits0
CNNVD
CNNVD
added 2026/02/18 12:0 a.m.9 views

BSV SDK 安全漏洞

The BSV SDK is an open-source developer toolkit for BSV Blockchain. Versions of the BSV SDK prior to 2.0.0 contained security vulnerabilities. These vulnerabilities stemmed from errors in the signature data preparation process within the BRC-104 authentication mechanism, which could lead to...

5.4CVSS5.8AI score0.00286EPSS
Exploits0References2
Snyk
Snyk
added 2026/02/17 4:13 p.m.3 views

Improper Following of Specification by Caller

Overview @bsv/sdk is a BSV Blockchain Software Development Kit Affected versions of this package are vulnerable to Improper Following of Specification by Caller in the Peer class, used by the processInitialRequest and processInitialResponse methods. An attacker can cause a signature to be...

7.3CVSS5.6AI score0.00286EPSS
Exploits0References2
OSV
OSV
added 2026/02/10 12:21 a.m.4 views

GHSA-Q66H-M87M-J2Q6 Bitcoinrb Vulnerable to Command injection via RPC

Summary: Remote Code Execution Unsafe handling of request parameters in the RPC HTTP server results in command injection Details In lib/bitcoin/rpc/httpserver.rb line 30-39, the JSON body of a POST request is parsed into command and args variables. These values are then passed to send, which is...

5.1CVSS6.5AI score
Exploits0References4
HackRead
HackRead
added 2026/02/07 8:8 p.m.6 views

Bithumb Mistakenly Sends 620,000 Bitcoin ($40B) to Customer Accounts

A system error at Bithumb sent 620,000 Bitcoin worth about $40B to hundreds of users during a promotion, briefly disrupting prices and drawing scrutiny...

5.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/01 3:19 p.m.8 views

CVE-2025-14554

The Sell BTC - Cryptocurrency Selling Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'orderformdata' AJAX action in all versions up to, and including, 1.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

7.2CVSS6AI score0.00319EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/31 1:24 p.m.8 views

EUVD-2025-206583

The Sell BTC - Cryptocurrency Selling Calculator plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'orderformdata' AJAX action in all versions up to, and including, 1.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated...

7.2CVSS6AI score0.00319EPSS
Exploits0References6
HackRead
HackRead
added 2026/01/31 12:55 p.m.8 views

US Seizes $400 Million Linked to Helix Dark Web Crypto Mixer

US authorities take control of over $400 million in crypto, cash, and property tied to Helix, a major darknet bitcoin mixing service used by drug markets...

5.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/29 3:18 p.m.16 views

CVE-2026-1380

The Bitcoin Donate Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the settings page. This makes it possible for unauthenticated attackers to modify the plugin's settings,...

4.3CVSS5.8AI score0.00124EPSS
Exploits0References1
EUVD
EUVD
added 2026/01/28 11:23 a.m.6 views

EUVD-2026-4924

The Bitcoin Donate Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the settings page. This makes it possible for unauthenticated attackers to modify the plugin's settings,...

4.3CVSS5.8AI score0.00124EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/28 11:23 a.m.6 views

CVE-2026-1380

The Bitcoin Donate Button plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing or incorrect nonce validation on the settings page. This makes it possible for unauthenticated attackers to modify the plugin's settings,...

4.3CVSS5.8AI score0.00124EPSS
Exploits0References4
CVE
CVE
added 2026/01/28 11:23 a.m.23 views

CVE-2026-1380

CVE-2026-1380 affects the Bitcoin Donate Button WordPress plugin (

4.3CVSS5.8AI score0.00124EPSS
Exploits0References3
Patchstack
Patchstack
added 2026/01/28 1:53 a.m.7 views

WordPress Bitcoin Donate Button plugin <= 1.0 - Cross-Site Request Forgery to Settings Update vulnerability

Cross-Site Request Forgery to Settings Update vulnerability discovered by Muhammad Nur Ibnu Hubab Ibnu - Pondok Teknologi in WordPress Plugin Bitcoin Donate Button versions = 1.0...

4.3CVSS5.9AI score0.00124EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.8 views

WordPress Plugin: Bitcoin Donation Button – Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

4.3CVSS5.7AI score0.00124EPSS
Exploits0References4
HackRead
HackRead
added 2026/01/14 8:59 a.m.7 views

How Cybercrime Markets Launder Breach Proceeds and What Security Teams Miss

Explore how cybercrime markets turn stolen data into laundered funds using dollar‑pegged assets, mixers and exchanges-and why tracking BTC USDT price and stablecoin flows now matters for security, fraud and AML teams...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 12:37 p.m.6 views

CVE-2023-50428

In Bitcoin Core through 26.0 and Bitcoin Knots before 25.1.knots20231115, datacarrier size limits can be bypassed by obfuscating data as code e.g., with OPFALSE OPIF, as exploited in the wild by Inscriptions in 2022 and 2023. NOTE: although this is a vulnerability from the perspective of the...

5.3CVSS7.1AI score0.00779EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:15 p.m.10 views

CVE-2018-1000891

Bitcoin SV before 0.1.1 allows uncontrolled resource consumption when receiving messages with invalid checksums...

7.5CVSS7AI score0.01031EPSS
Exploits0References1
Rows per page
Query Builder