Potential Fund Compromise via Malicious Token Insertion

Lines of code Vulnerability details Impact Since any token can be sent to the PrimeLiquidityProvider contract there is a great chance of an attacker sending a scam token with some legit value in it to lure the owner making him sweep those tokens and by doing so compromising the whole contract's...

Integer overflow

The mintToken function of a smart contract implementation for Super Cool Awesome Money SCAM, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value...

CVE-2018-13516

CVE-2018-13516 involves the mintToken function in the Super Cool Awesome Money (SCAM) Ethereum token, where an integer overflow enables the contract owner to set any user’s balance to an arbitrary value. Multiple connected documents (CNVD-2018-13191, CNVD-derived reports, PRION/CVE, NVD entry) de...

New transferFlaw Bug Used For Possible Scam Token Listed In A Top Exchange(CVE-2018-10468)

Our automated scanning system at PeckShield discovered a new vulnerability named transferFlaw CVE-2018–10468. This particular vulnerability affects a publicly traded ERC20 token listed in a top exchange. Different from batchOverflow 1 and proxyOverflow 2 we identified before, this vulnerability...