2 matches found
Integer Overflow
@openzeppelin/confidential-contracts is vulnerable to Integer Overflow. The vulnerability is due to a silent overflow failure in the internal mint function that is not checked by wrapper functions, which allows an attacker to cause minting to fail silently while still transferring underlying...
Malicious code in wrapped-tokens (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a22c931bcd9ec7e9c378fadf42fe4573d7af2a1656ec01077dd395ee6fdaa488 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...