CVE-2026-34209

mppx is a TypeScript interface for machine payments protocol. Prior to version 0.4.11, the tempo/session cooperative close handler validated the close voucher amount using "" instead of "=" against the on-chain settled amount. An attacker could submit a close voucher exactly equal to the settled...

CVE-2025-7954

CVE-2025-7954 targets Shopware v6.6.10.4 and describes a race condition in the voucher system that allows bypassing voucher restrictions and exceeding usage limits. The issue arises during voucher validation, where non-atomic voucher checks can enable multiple checkouts to reuse limited or genera...

CVE-2025-7954 Race Condition in Shopware Voucher Submission

A race condition vulnerability has been identified in Shopware's voucher system of Shopware v6.6.10.4 that allows attackers to bypass intended voucher restrictions and exceed usage limitations...

In-depth exploration found in the wild iOS exploit chain V-vulnerability warning-the black bar safety net

This exploit chain are currently three different teams found, respectively, is the attacker's malicious organization, Project Zero Brandon Azad and 360 Security@S0rryMybad it. In 2018, 11 December 17,@S0rryMybad exploit this vulnerability in the Tianfu Cup PWN the race to win the 20 million dolla...