Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitcoin vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-1000851
Copay Bitcoin Wallet version 5.01 to 5.1.0 included. contains a Other/Unknown vulnerability in wallet private key storage that can result in Users' private key can be compromised. . This attack appear to be exploitable via Affected version run the malicious code at startup ....
Copay Copay Bitcoin Wallet
6.1
CVSSv3
CVE-2021-24679
The Bitcoin / AltCoin Payment Gateway for WooCommerce WordPress plugin prior to 1.6.1 does not escape the 's' GET parameter before outputting back in the All Masking Rules page, leading to a Reflected Cross-Site Scripting issue
Coinmarketstats Bitcoin \\/ Altcoin Payment Gateway For Woocommerce
9.8
CVSSv3
CVE-2022-4118
The Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop WordPress plugin up to and including 1.7.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by authenticated users
Coinmarketstats Bitcoin \\/ Altcoin Payment Gateway For Woocommerce
7.5
CVSSv3
CVE-2018-17145
Bitcoin Core 0.16.x prior to 0.16.2 and Bitcoin Knots 0.16.x prior to 0.16.2 allow remote denial of service via a flood of multiple transaction inv messages with random hashes, aka INVDoS. NOTE: this can also affect other cryptocurrencies, e.g., if they were forked from Bitcoin C...
Bcoin Bcoin
Bitcoin Bitcoin Core
Bitcoinknots Bitcoin Knots
Btcd Project Btcd 0.3.0
Btcd Project Btcd 0.3.1
Btcd Project Btcd 0.3.2
Btcd Project Btcd 0.3.3
Btcd Project Btcd 0.4.0
Btcd Project Btcd 0.5.0
Btcd Project Btcd 0.6.0
Btcd Project Btcd 0.7.0
Btcd Project Btcd 0.8.0
Btcd Project Btcd 0.9.0
Btcd Project Btcd 0.10.0
Btcd Project Btcd 0.11.0
Btcd Project Btcd 0.11.1
Btcd Project Btcd 0.12.0
Btcd Project Btcd 0.13.0
Btcd Project Btcd 0.20.0
Btcd Project Btcd 0.20.1
Decred Dcrd
Litecoin Litecoin
6.1
CVSSv3
CVE-2019-16762
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the slpjs npm package. An attacker could create a specially crafted Bitcoin script in order to cause a hard-fork from the SLP consensus. Affected user...
Simpleledger Slpjs
6.1
CVSSv3
CVE-2019-16761
A specially crafted Bitcoin script can cause a discrepancy between the specified SLP consensus rules and the validation result of the slp-validate@1.0.0 npm package. An attacker could create a specially crafted Bitcoin script in order to cause a hard-fork from the SLP consensus. ...
Simpleledger Slp-validate 1.0.0
NA
CVE-2024-34149
In Bitcoin Core up to and including 27.0 and Bitcoin Knots prior to 25.1.knots20231115, tapscript lacks a policy size limit check, a different issue than CVE-2023-50428. NOTE: some parties oppose this new limit check (for example, because they agree with the objective but disagre...
6.1
CVSSv3
CVE-2022-47145
Reflected Cross-Site Scripting (XSS) vulnerability in Blockonomics WordPress Bitcoin Payments – Blockonomics plugin <= 3.5.7 versions.
Blockonomics Blockonomics
9.8
CVSSv3
CVE-2022-44797
btcd prior to 0.23.2, as used in Lightning Labs lnd prior to 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking.
Btcd Project Btcd
7.1
CVSSv3
CVE-2024-0676
Weak password requirement vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version , which allows a local user to interact with the machine where the application is installed, retrieve stored hashes from the machine and crack long 4-character passwords using a dict...
Lamassu Douro Firmware 7.1
Lamassu Douro Ii Firmware 7.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »