15 matches found
Malicious code in base-x-64 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2486f9bad36944300cb58e1a73a370afef7be10040daf814861d1b1a6287cdb8 The package base-x-64 was found to contain malicious code. Source: ghsa-malware d09ca9d36cb3821dc878f97db3b7e8ddef6f5f8e390373492186d10b668718f3 Any...
MAL-2026-2320 Malicious code in base-x-64 (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2486f9bad36944300cb58e1a73a370afef7be10040daf814861d1b1a6287cdb8 The package base-x-64 was found to contain malicious code. Source: ghsa-malware d09ca9d36cb3821dc878f97db3b7e8ddef6f5f8e390373492186d10b668718f3 Any...
base-x: base-x homograph attack allows Unicode lookalike characters to bypass validation.
A flaw was found in base-x. This vulnerability allows attackers to generate addresses that appear legitimate, tricking users into sending money to them instead of the intended ones. The problem arises from the way base-x compresses leading zeros in addresses via manipulation of the base encoding...
base-x: base-x homograph attack allows Unicode lookalike characters to bypass validation.
A flaw was found in base-x. This vulnerability allows attackers to generate addresses that appear legitimate, tricking users into sending money to them instead of the intended ones. The problem arises from the way base-x compresses leading zeros in addresses via manipulation of the base encoding...
base-x: base-x homograph attack allows Unicode lookalike characters to bypass validation.
A flaw was found in base-x. This vulnerability allows attackers to generate addresses that appear legitimate, tricking users into sending money to them instead of the intended ones. The problem arises from the way base-x compresses leading zeros in addresses via manipulation of the base encoding...
CVE-2025-27611 base-x homograph attack allows Unicode lookalike characters to bypass validation.
base-x is a base encoder and decoder of any given alphabet using bitcoin style leading zero compression. Versions 4.0.0, 5.0.0, and all prior to 3.0.11, are vulnerable to attackers potentially deceiving users into sending funds to an unintended address. This issue has been patched in versions...
Insufficient Visual Distinction of Homoglyphs Presented to User
Overview org.webjars.npm:base-x is a Fast base encoding / decoding of any given alphabet Affected versions of this package are vulnerable to Insufficient Visual Distinction of Homoglyphs Presented to User through the validation process. An attacker can deceive users into sending funds to an...
CVE-2025-27611 base-x homograph attack allows Unicode lookalike characters to bypass validation.
base-x is a base encoder and decoder of any given alphabet using bitcoin style leading zero compression. Versions 4.0.0, 5.0.0, and all prior to 3.0.11, are vulnerable to attackers potentially deceiving users into sending funds to an unintended address. This issue has been patched in versions...
org.webjars.npm:bitcore-lib (=0.15.0), org.webjars.npm:bitcore-mnemonic (=1.5.0) +5 more potentially affected by CVE-2025-27611 via org.webjars.npm:base-x (=3.0.8)
org.webjars.npm:base-x MAVEN version =3.0.8 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:base-x and may be impacted: - org.webjars.npm:bitcore-lib =0.15.0 - org.webjars.npm:bitcore-mnemonic =1.5.0 - org.webjars.npm:bs58 =4.0.1 -...
CVE-2025-27611 base-x homograph attack allows Unicode lookalike characters to bypass validation.
base-x is a base encoder and decoder of any given alphabet using bitcoin style leading zero compression. Versions 4.0.0, 5.0.0, and all prior to 3.0.11, are vulnerable to attackers potentially deceiving users into sending funds to an unintended address. This issue has been patched in versions...
@1tokenfe/cross-inpage-provider-injected (=2.2.46), @1tokenfe/inpage-providers-hub (=2.2.46) +129 more potentially affected by CVE-2025-27611 via base-x (=4.0.0)
base-x NPM version =4.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on base-x and may be impacted: - @1tokenfe/cross-inpage-provider-injected =2.2.46 - @1tokenfe/inpage-providers-hub =2.2.46 - @1tokenfe/onetoken-alph-provider =2.2.46 -...
@astrobase/core (>=0.2.0 <=0.4.0), @indiebackend/domain-ids (>=0.0.1 <=1.0.3) +2 more potentially affected by CVE-2025-27611 via base-x (=5.0.0)
base-x NPM version =5.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on base-x and may be impacted: - @astrobase/core =0.2.0, =0.0.1, =0.0.11, =0.5.0, =0.5.15 Source cves: CVE-2025-27611 Source advisory: OSV:GHSA-XQ7P-G2VC-G82P...
PT-2025-18320 · Base-X · Base-X
Name of the Vulnerable Software and Affected Versions: base-x versions prior to 3.0.11 base-x version 4.0.0 base-x version 5.0.0 Description: The issue allows attackers to potentially deceive users into sending funds to an unintended address. This is achieved through a problem in the base-x encod...
base-x 安全漏洞
base-x is a cryptocoinjs open source tool for encoding/decoding any base. A security vulnerability exists in base-x versions prior to 3.0.11, 4.0.0, and 5.0.0, which stems from a vulnerability that could cause a user to send funds to an unintended address...
phpBB <= 2.0.15 Register Multiple Users Denial of Service (perl code)
Exploit for unknown platform in category web applications ===================================================================== phpBB = 2.0.15 Register Multiple Users Denial of Service perl code ===================================================================== !/usr/bin/perl Name: NsT-phpBBDo...