Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

Packet Storm News
Packet Storm Newsadded 2026/04/27 12:0 a.m.1 views

GoAT-X: A Graph of Auditing Thoughts for Securing Token Transactions in Cross-Chain Contracts

Cross-chain bridges, the critical infrastructure of the multi-chain ecosystem, have become a primary target for attackers, resulting in over $2.8 billion in losses due to subtle implementation flaws. Existing defenses, such as bytecode-level static analysis, are ill-equipped to handle the semanti...

5.4AI score
Exploits0
NVD
NVDadded 2025/05/15 8:16 p.m.10 views

CVE-2025-46834

Alchemy's Modular Account is a smart contract account that is compatible with ERC-4337 and ERC-6900. In versions on the 2.x branch prior to commit 5e6f540d249afcaeaf76ab95517d0359fde883b0, owners of Modular Accounts can grant session keys scoped external keys to external parties and would use the...

8.7CVSS0.00336EPSS
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packagesadded 2025/04/03 12:39 a.m.7 views

Malicious code in rif-token-contracts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05165c539111a84ce983abfe2dbe4cadf7b601ad72a0676be43e8c101e5fc752 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References3
OSV
OSVadded 2025/04/03 12:39 a.m.3 views

MAL-2025-3116 Malicious code in rif-token-contracts (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 05165c539111a84ce983abfe2dbe4cadf7b601ad72a0676be43e8c101e5fc752 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References3
Code423n4
Code423n4added 2023/12/20 12:0 a.m.11 views

Contracts are vulnerable to fee-on-transfer accounting-related issues

Lines of code 359, 448, 509, 530, 42, 797, 162 Vulnerability details The functions below transfer funds from the caller to the receiver via transferFrom, but do not ensure that the actual number of tokens received is the same as the input amount to the transfer. If the token is a fee-on-transfer...

6.9AI score
Exploits0
Code423n4
Code423n4added 2022/09/25 12:0 a.m.6 views

use safeERC20

Lines of code Vulnerability details Impact Some tokens contracts like USDT don't comply with the erc20 standard, the transfer doesn't return a boolean. Proof of Concept Tools Used Recommended Mitigation Steps Use the safeErc20 library from OpenZeppelin. --- The text was updated successfully, but...

6.9AI score
Exploits0
Rows per page
Query Builder