Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitcoin vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2013-4165
The HTTPAuthorized function in bitcoinrpc.cpp in bitcoind 0.8.1 provides information about authentication failure upon detecting the first incorrect byte of a password, which makes it easier for remote malicious users to determine passwords via a timing side-channel attack.
Bitcoin Bitcoin Core 0.8.1
5
CVSSv2
CVE-2018-11687
An integer overflow in the distributeBTR function of a smart contract implementation for Bitcoin Red (BTCR), an Ethereum ERC20 token, allows the owner to accomplish an unauthorized increase of digital assets by providing a large address[] array, as exploited in the wild in May 20...
Bitcoin Red Project Bitcoin Red -
1 Github repository
3.5
CVSSv2
CVE-2018-6862
Cross Site Scripting (XSS) exists in PHP Scripts Mall Bitcoin MLM Software 1.0.2 via a profile field.
Bitcoin Mlm Project Bitcoin Mlm 1.0.2
NA
CVE-2022-3024
The Simple Bitcoin Faucets WordPress plugin up to and including 1.7.0 does not have any authorisation and CSRF in an AJAX action, allowing any authenticated users, such as subscribers to call it and add/delete/edit Bonds. Furthermore, due to the lack of sanitisation and escaping,...
Simple Bitcoin Faucets Project Simple Bitcoin Faucets
NA
CVE-2022-3025
The Bitcoin / Altcoin Faucet WordPress plugin up to and including 1.6.0 does not have any CSRF check when saving its settings, allowing malicious user to make a logged in admin change them via a CSRF attack. Furthermore, due to the lack of sanitisation and escaping, it could also...
Bitcoin\\/altcoin Faucet Project Bitcoin\\/altcoin Faucet
5
CVSSv2
CVE-2018-1000893
Bitcoin SV prior to 0.1.1 allows uncontrolled resource consumption when deserializing transactions.
Bitcoinsv Bitcoin Sv
2.6
CVSSv2
CVE-2018-1000022
Electrum Technologies GmbH Electrum Bitcoin Wallet version prior to version 3.0.5 contains a Missing Authorization vulnerability in JSONRPC interface that can result in Bitcoin theft, if the user's wallet is not password protected. This attack appear to be exploitable via Th...
Electrum Bitcoin Wallet
1.9
CVSSv2
CVE-2018-10812
The Bitpie application up to and including 3.2.4 for Android and iOS uses cleartext storage for digital currency initial keys, which allows local users to steal currency by leveraging root access to read /com.biepie/shared_prefs/com.bitpie_preferences.xml (on Android) or a plist ...
Bitpie Bitcoin Wallet
5
CVSSv2
CVE-2018-1000891
Bitcoin SV prior to 0.1.1 allows uncontrolled resource consumption when receiving messages with invalid checksums.
Bitcoinsv Bitcoin Sv
5
CVSSv2
CVE-2018-1000892
Bitcoin SV prior to 0.1.1 allows uncontrolled resource consumption when receiving sendheaders messages.
Bitcoinsv Bitcoin Sv
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744
privilege escalation
CVE-2024-30253
CVE-2024-3914
cross-site scripting
CVE-2024-31497
CVE-2024-3400
CVE-2024-32341
hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »