Lucene search
K

146 matches found

Code423n4
Code423n4
added 2022/09/25 12:0 a.m.7 views

recoverEther not updating currentWithheldETH breaks calculation of withheld amount for further deposits

Lines of code Vulnerability details The emergency exit function recoverEther allows the owner to retrieve the ETH in case an issue were to happen. The problem is that this function does not update currentWithheldETH. This means upon deposit starting again after the emergency recovery,...

6.8AI score
Exploits0
Code423n4
Code423n4
added 2022/09/25 12:0 a.m.9 views

withheld_amt calculation is done after minting frxETHToken tokens

Lines of code Vulnerability details Proof of concept The submit method in frxETHMinter.sol has the following code // Give the sender frxETH frxETHToken.mintermintrecipient, msg.value; // Track the amount of ETH that we are keeping uint256 withheldamt = 0; if withholdRatio != 0 withheldamt =...

6.7AI score
Exploits0
Code423n4
Code423n4
added 2022/09/25 12:0 a.m.7 views

Admin rug vector in moveWithheldETH()

Lines of code Vulnerability details According to the documentation, currentWithheldETH is meant to: withhold part of the ETH deposit for future use, such as to earn yield in other places to supplement the ETH 2.0 staking yield The issue is that the owner can call moveWithheldETH with an arbitrary...

6.8AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/24 11:38 p.m.12 views

m.x42n6u.cyou Cross Site Scripting vulnerability OBB-2863012

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/15 3:4 a.m.19 views

karo.umk.pl Cross Site Scripting vulnerability OBB-2847877

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/08/11 12:37 p.m.10 views

adconfection.fr Cross Site Scripting vulnerability OBB-2836730

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/09 7:12 a.m.14 views

rsquaremedia.com Cross Site Scripting vulnerability OBB-2745784

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/07 12:13 p.m.11 views

ghostmarketing.co.uk Cross Site Scripting vulnerability OBB-2739614

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/07/07 6:43 a.m.22 views

edinburghcastleapartments.com Cross Site Scripting vulnerability OBB-2738311

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
CNNVD
CNNVD
added 2022/04/17 12:0 a.m.5 views

radare2 缓冲区错误漏洞

radare2 is a set of libraries and tools for working with binary files. A security vulnerability exists in radare2 that stems from an error that causes the program to read more data than is expected at the end of a buffer. No details of the vulnerability are provided at this time...

6.1CVSS5.4AI score0.00739EPSS
Exploits1References4
Openbugbounty
Openbugbounty
added 2022/04/11 11:56 a.m.6 views

rataboutique.com Cross Site Scripting vulnerability OBB-2493985

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2022/02/20 8:52 a.m.11 views

urang.it Cross Site Scripting vulnerability OBB-2380523

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2021/10/12 10:29 p.m.44 views

circuitdigest.com Cross Site Scripting vulnerability OBB-2163395

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Exploits0
Openbugbounty
Openbugbounty
added 2021/09/29 8:24 a.m.20 views

gamemeca.com Cross Site Scripting vulnerability OBB-2152291

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2021/09/22 6:4 p.m.7 views

salzburgtours.at Cross Site Scripting vulnerability OBB-2147238

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2021/09/16 8:29 p.m.57 views

school-collection.edu.ru Cross Site Scripting vulnerability OBB-2142986

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2021/08/29 5:10 p.m.43 views

offer.com.cy Cross Site Scripting vulnerability OBB-2128813

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
CNNVD
CNNVD
added 2021/03/25 12:0 a.m.6 views

Samsung Bixby Voice 安全漏洞

Samsung Bixby Voice is an application from the South Korean company Samsung. It provides a voice recognition function. Bixby Voice suffers from a security vulnerability that allows an attacker to perform privileged actions by hijacking and modifying the intent. No details of the vulnerability are...

7.8CVSS5.6AI score0.00224EPSS
Exploits0References2
Openbugbounty
Openbugbounty
added 2020/11/03 2:0 p.m.22 views

treadmill.site123.me Cross Site Scripting vulnerability OBB-1480224

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

Exploits0
Openbugbounty
Openbugbounty
added 2020/11/01 7:58 a.m.35 views

blog.urbanfile.org Improper Access Control vulnerability OBB-1471579

Following coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: &nbsp&nbsp&nbsp&nbsp&nbsp&nbspa. verified the vulnerability and confirmed its existence; &nbsp&nbsp&nbsp&nbsp&nbsp&nbspb. notified the website operator about its existence...

0.1AI score
Exploits0
Rows per page
Query Builder