MAL-2025-9330 Malicious code in @solana-libs/check-balance (npm)

The package @solana-libs/check-balance was found to contain malicious code...

Malicious code in @solana-libs/check-balance (npm)

The package @solana-libs/check-balance was found to contain malicious code...

Malicious code in @solanas-libs/check-balance (npm)

The package @solanas-libs/check-balance was found to contain malicious code...

MAL-2025-9331 Malicious code in @solanas-libs/check-balance (npm)

The package @solanas-libs/check-balance was found to contain malicious code...

Contracts are vulnerable to fee-on-transfer accounting-related issues

Lines of code 359, 448, 509, 530, 42, 797, 162 Vulnerability details The functions below transfer funds from the caller to the receiver via transferFrom, but do not ensure that the actual number of tokens received is the same as the input amount to the transfer. If the token is a fee-on-transfer...

ERC20Vault does not support fee-on-transfer token

Handle gzeon Vulnerability details Impact ERC20Vault does not support fee-on-transfer token since it does not check the balance received by the contract. Proof of Concept for uint256 i = 0; i 0 IERC20tokensi.safeTransferFromfrom, addressthis, tokenAmountsi; actualTokenAmounts = pushtokens,...