A Hacker’s Mind is Out in Paperback

The paperback version of A Hackers Mind has just been published. Its the same book, only a cheaper format. But--and this is the real reason I am posting this--Amazon has significantly discounted the hardcover to $15 to get rid of its stock. This is much cheaper than I am selling it for, and cheap...

Webpushr < 4.35.0 - Unauthenticated Stored XSS

Description The plugin does not prevent visitors on the site from changing some of the plugin options, some of which may be used to conduct Stored XSS attacks. 1. Woocommerce needs to be installed as well as activating webpushr-web-push-notifications by creating an account. 2. Run the following...

Calls to rigidRedemption can fail due to an underflow when collateralAsset price falls.

Lines of code Vulnerability details Impact When the collateralAsset price falls drastically a wrong collateralAmount is calculated in the line below from the eusdAmount. The collateralAmount calculated can be greater than the amount deposited by the provider in the rigidRedemption. Which leads to...

Depositors might not be able to withdraw from StabilityPool if any collateral's price drops significantly

Lines of code Vulnerability details In the TroveManager contract, the closeTrove function contains a check to ensure there is more than one trove, as shown below. TroveManager.solL1278-L1282: function closeTroveaddress borrower, address collateral, Status closedStatus internal assertclosedStatus ...

Dutch auction getPrice() formula can lead to price reaching 0 and eventually reverting and locking the function.

Lines of code Vulnerability details Impact In the function getPrice the current price is calculated by taking the start price and subtracting the product of dropPersecond and time elapsed. start price - dropPreSecond timeElapsed. The issue with this is that given the right inputs for dropPerSecon...

GitLab Denial of Service Vulnerability (CNVD-2022-25197)

GitLab is an open source, end-to-end software development platform from the U.S. company GitLab, with built-in version control, issue tracking, code review, CI/CD Continuous Integration and Continuous Delivery and other features. A denial of service vulnerability exists in GitLab CE/EE versions...

Lightning Price Drop app suffers from an override access vulnerability

Lightning Price Drop app is an online shopping application, which is a shopping platform of Shanghai Huanshang E-commerce Co. Lightning Price Drop app suffers from an unauthorized access vulnerability. An attacker can exploit this vulnerability to gain unauthorized access to user information...

Bitcoin Price Drops 10% Amid Binance Exchange Hacking Rumors

By Waqas Being part of cryptocurrency industry is like constantly riding on This is a post from HackRead.com Read the original post: Bitcoin Price Drops 10% Amid Binance Exchange Hacking Rumors...

Bitcoin Price Drops 20% After $72 Million in Bitcoin Stolen from Bitfinex Exchange

Yet another blow to Bitcoin: One of the world's most popular exchanges of the cryptocurrency has suffered a major hack, leading to a loss of around $72 Million worth of Bitcoins. Hong Kong-based Bitcoin exchange 'Bitfinex' has posted a note on their website announcing the shutdown of its operatio...

Mt.Gox взломан

Mt. Gox — одна из крупнейших Bitcoin бирж, позволяющих обменивать «цифровое золото» на вполне реальные деньги. В результате взлома в руки злоумышленников попали данные о пароле в зашифрованном виде, логине и почте пользователей. После взлома, пока по непонятной причине, курс биткоинов на бирже...