5 matches found
Jenkins Job and Node ownership Plugin 访问控制错误漏洞
Jenkins is a Jenkins open source application. An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Job and Node ownership Plugin 0.13.0 and earlier versions are vulnerable to an authorization issue that stems from...
BOMBBA Authorization Issue Vulnerability
BOMBBA BOMB is a cryptocurrency.A security vulnerability exists in the 'quaker' function of BOMB's smart contract implementation, which stems from the fact that the function does not check the identity of the caller. An attacker could use the vulnerability to modify the owner of the smart contrac...
CVE-2018-19830
The UBSexToken function of a smart contract implementation for Business Alliance Financial Circle BAFC, an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function is public by default and does not check the caller's identity...
Code injection
The ToOwner function of a smart contract implementation for Cryptbond Network CBN, an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity...
CVE-2018-19834
The CVE-2018-19834 entry concerns a vulnerability in the smart contract quaker function that allows an attacker to change the contract owner due to lack of caller identity checks. Connected documents describe a recurring pattern across multiple ERC20-like contracts (e.g., BAFC, CBN, NETM, DDQ) wh...