Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ethereum ethereum - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-14063
The increaseApproval function of a smart contract implementation for Tracto (TRCT), an Ethereum ERC20 token, has an integer overflow.
Tracto Tracto -
7.5
CVSSv3
CVE-2018-13146
The mintToken, buy, and sell functions of a smart contract implementation for LEF, an Ethereum token, have an integer overflow.
Lef Project Lef -
7.5
CVSSv3
CVE-2018-13328
The transfer, transferFrom, and mint functions of a smart contract implementation for PFGc, an Ethereum token, have an integer overflow.
Pfg Project Pfg -
7.5
CVSSv3
CVE-2020-19765
An issue in the noReentrance() modifier of the Ethereum-based contract Accounting 1.0 allows malicious users to carry out a reentrancy attack.
Proofofdiligencetoken Project Proofofdiligencetoken 1.0
7.5
CVSSv3
CVE-2018-14576
The mintTokens function of a smart contract implementation for SunContract, an Ethereum token, has an integer overflow via the _amount variable.
Suncontract Suncontract -
7.5
CVSSv3
CVE-2021-34270
An integer overflow in the mintToken function of a smart contract implementation for Doftcoin Token, an Ethereum ERC20 token, allows the owner to cause unexpected financial losses.
Doft Doftcoin -
1 Github repository
5.9
CVSSv3
CVE-2018-10944
The request_dividend function of a smart contract implementation for ROC (aka Rasputin Online Coin), an Ethereum ERC20 token, allows malicious users to steal all of the contract's Ether.
Rasputinonline Rasputin Online Coin -
7.5
CVSSv3
CVE-2018-13126
MoxyOnePresale is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner.
Moxy Moxyonepresale -
7.5
CVSSv3
CVE-2018-13132
Spadeico is a smart contract running on Ethereum. The mint function has an integer overflow that allows minted tokens to be arbitrarily retrieved by the contract owner.
Spadeico Project Spadeico -
7.5
CVSSv3
CVE-2018-14001
An integer overflow vulnerability exists in the function batchTransfer of SHARKTECH (SKT), an Ethereum token smart contract. An attacker could use it to set any user's balance.
Sharktech Project Sharktech -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »