Lucene search
K

8 matches found

OSV
OSV
added 2024/11/13 8:33 a.m.4 views

MAL-2024-10686 Malicious code in waletconnect (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 88e6af7f36fb8505de18383cc5fa7a8823640c17a31787bac7cab99b4e788cc8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
The Hacker News
The Hacker News
added 2024/09/28 9:54 a.m.17 views

Crypto Scam App Disguised as WalletConnect Steals $70K in Five-Month Campaign

Cybersecurity researchers have discovered a malicious Android app on the Google Play Store that enabled the threat actors behind it to steal approximately $70,000 in cryptocurrency from victims over a period of nearly five months. The dodgy app, identified by Check Point, masqueraded as the...

6.5AI score
Exploits0
HackRead
HackRead
added 2024/09/27 4:58 p.m.8 views

First Mobile Crypto Drainer on Google Play Steals $70K from Users

A malicious app disguised as a legitimate WalletConnect tool targeted mobile users on Google Play. The app stole…...

7.3AI score
Exploits0
vulnersOsv
vulnersOsv
added 2024/04/17 6:21 p.m.6 views

@jup-ag/core (>=3.0.0-beta.0 <=3.0.0-beta.8-eacba78), @jup-ag/react-hook (>=3.0.0-beta.0 <=3.0.0-beta.8-eacba78) +7 more potentially affected by CVE-2024-30253 via @solana/web3.js (>=1.63.0 <=1.63.1)

@solana/web3.js NPM version =1.63.0, =3.0.0-beta.0, =3.0.0-beta.0, =0.0.1-0d5b39f4.0, =0.0.1-0f199db9.0, =4.0.0-maple-1, =0.1.0, =1.4.8, =1.0.0, =1.7.1-alpha.4 Source cves: CVE-2024-30253 Source advisory: OSV:GHSA-8M45-2RJM-J347...

7.5CVSS7AI score0.00593EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/04/17 6:21 p.m.5 views

@convexitydmcc/wallet-adapter-walletconnect (>=2.0.0-beta.26 <=2.0.0-rc.5), @renec-foundation/gasless-sdk (>=0.2.3 <=0.2.6) +1 more potentially affected by CVE-2024-30253 via @solana/web3.js (=1.48.0)

@solana/web3.js NPM version =1.48.0 is affected by a known vulnerability. The following packages have a transitive dependency on @solana/web3.js and may be impacted: - @convexitydmcc/wallet-adapter-walletconnect =2.0.0-beta.26, =0.2.3, =3.0.0, =6.3.0-profits-mercurial-rc8 Source cves:...

7.5CVSS7AI score0.00593EPSS
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2023/09/17 3:44 p.m.5 views

Malicious code in walletconnect-website (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8fedf1a7e034f6d4d96967609e8df064c5c028c14788047985c72051e2e6ab55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7AI score
Exploits0References1
OSV
OSV
added 2023/09/17 3:44 p.m.8 views

MAL-2023-8119 Malicious code in walletconnect-website (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 8fedf1a7e034f6d4d96967609e8df064c5c028c14788047985c72051e2e6ab55 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

7.2AI score
Exploits0References1
vulnersOsv
vulnersOsv
added 2023/04/18 10:29 p.m.4 views

@aprilsacil/wallet (>=0.1.36 <=0.1.51), @chainfuse/react (>=0.0.46 <=0.1.0-dev.96) +40 more potentially affected by CVE-2023-30543 via @web3-react/walletconnect (>=8.0.23-beta.0 <=8.0.36-beta.0)

@web3-react/walletconnect NPM version =8.0.23-beta.0, =0.1.36, =0.0.46, =0.0.70, =1.0.0, =0.0.1, =1.0.0, =0.0.1, =1.1.0, =0.0.3, =1.0.0, =0.0.6-alpha.0, =0.0.12 - @huma-finance/widgets =0.0.6-alpha.0 - @huma-shan/shared =0.0.1 and more Source cves: CVE-2023-30543 Source advisory:...

5.7CVSS6.2AI score0.00378EPSS
Exploits0
Rows per page
Query Builder