Malicious user can use previously used nodeID to prevent user(s) from withdrawing minipool funds

Lines of code Vulnerability details In createMinipool, an event is emitted with details of a newly created minipool. This includes relevant information that a subsequent user can utilise to create another minipool.The only condition that prevents a minipool from being created again with the same...

Unfixed XSS vulnerability at www.workgateways.com

Security researcher MadAgent, has submitted on 04/11/2009 a cross-site-scripting XSS vulnerability affecting www.workgateways.com, which at the time of submission ranked 124479 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 05/07/2010. It is...

Unfixed XSS vulnerability at www.oyuntak.com

Security researcher lejoner, has submitted on 19/06/2008 a cross-site-scripting XSS vulnerability affecting www.oyuntak.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 21/06/2008. It is currently...

Unfixed XSS vulnerability at www.first5oralhealth.org

Security researcher MaXWeL, has submitted on 13/03/2007 a cross-site-scripting XSS vulnerability affecting www.first5oralhealth.org, which at the time of submission ranked 3765708 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 14/03/2007. It i...