25 matches found
EUVD-2018-1954
Malware in sbrugna...
EUVD-2022-31672
Malicious code in bioql PyPI...
MAL-2025-19694 Malicious code in eosio-toppings (npm)
The package eosio-toppings was found to contain malicious code...
MAL-2025-19693 Malicious code in eosio-reference-chrome-extension-authenticator-app (npm)
The package eosio-reference-chrome-extension-authenticator-app was found to contain malicious code...
Malicious code in eosio-toppings (npm)
The package eosio-toppings was found to contain malicious code...
Malicious code in eosio-reference-chrome-extension-authenticator-app (npm)
The package eosio-reference-chrome-extension-authenticator-app was found to contain malicious code...
CVE-2022-27134
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter...
CVE-2018-1000618
EOSIO/eos eos version after commit f1545dd0ae2b77580c2236fdb70ae7138d2c7168 contains a stack overflow vulnerability in abiserializer that can result in attack eos network node. This attack appear to be exploitable via network request. This vulnerability appears to have been fixed in after commit...
Malicious code in eosio-signerz (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11583 Malicious code in eosio-signerz (PyPI)
--- -= Per source details. Do not edit below this line.=-...
MAL-2024-11582 Malicious code in eosio-signer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 647b75de784ff7b23edb8a5b76d1a017b02d1fd719c6a5a92587fa8d89c25abf Installing the package exfiltrates basic data about the system --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anythin...
Malicious code in eosio-signer (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 647b75de784ff7b23edb8a5b76d1a017b02d1fd719c6a5a92587fa8d89c25abf Installing the package exfiltrates basic data about the system --- Category: PROBABLYPENTEST - Packages looking like typical pentest packages, but also anythin...
@blockmatic/eosio-ship-reader (>=0.3.0 <=1.2.0), @kongkong21/eosio-ship-reader (>=1.3.0 <=1.3.1) +4 more potentially affected by CVE-2021-29057 via node-worker-threads-pool (=1.4.3)
node-worker-threads-pool NPM version =1.4.3 is affected by a known vulnerability. The following packages have a transitive dependency on node-worker-threads-pool and may be impacted: - @blockmatic/eosio-ship-reader =0.3.0, =1.3.0, =1.0.0, =0.0.2, =0.0.1, =1.0.53 Source cves: CVE-2021-29057 Source...
CVE-2022-27134
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter...
CVE-2022-27134
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter...
CVE-2022-27134
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter...
Improper access control
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter...
CVE-2022-27134
EOSIO batdappboomx v327c04cf has an Access-control vulnerability in the transfer function of the smart contract which allows remote attackers to win the cryptocurrency without paying ticket fee via the std::string memo parameter...
CVE-2022-27134
CVE-2022-27134 affects EOSIO batdappboomx v327c04cf, with an access-control flaw in the smart contract’s transfer function. The vulnerability allows remote attackers to win cryptocurrency without paying the ticket fee, via the std::string memo parameter. Multiple sources (NVD, Red Hat, PRION, CVE...
EOS.IO DAWN Security Vulnerability
EOS.IO DAWN is a smart contract platform based on blockchain technology. The platform is used to deploy decentralized applications.A security vulnerability exists in EOS.IO DAWN version 4.2, which stems from the plugins/netplugin/netplugin.cpp file not limiting the number of P2P links from the sa...