Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bitcoin bitcoin - vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-4118
The Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop WordPress plugin up to and including 1.7.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by authenticated users
Coinmarketstats Bitcoin \\/ Altcoin Payment Gateway For Woocommerce
9.8
CVSSv3
CVE-2022-44797
btcd prior to 0.23.2, as used in Lightning Labs lnd prior to 0.15.2-beta and other Bitcoin-related products, mishandles witness size checking.
Btcd Project Btcd
9.8
CVSSv3
CVE-2021-3401
Bitcoin Core prior to 0.19.0 might allow remote malicious users to execute arbitrary code when another application unsafely passes the -platformpluginpath argument to the bitcoin-qt program, as demonstrated by an x-scheme-handler/bitcoin handler for a .desktop file or a web brows...
Bitcoin Bitcoin
9.8
CVSSv3
CVE-2018-1000851
Copay Bitcoin Wallet version 5.01 to 5.1.0 included. contains a Other/Unknown vulnerability in wallet private key storage that can result in Users' private key can be compromised. . This attack appear to be exploitable via Affected version run the malicious code at startup ....
Copay Copay Bitcoin Wallet
7.8
CVSSv3
CVE-2024-0674
Privilege escalation vulnerability in Lamassu Bitcoin ATM Douro machines, in its 7.1 version, which could allow a local user to acquire root permissions by modifying the updatescript.js, inserting special code inside the script and creating the done.txt file. This would cause the...
Lamassu Douro Firmware 7.1
Lamassu Douro Ii Firmware 7.1
7.8
CVSSv3
CVE-2018-6353
The Python console in Electrum up to and including 2.9.4 and 3.x up to and including 3.0.5 supports arbitrary Python code without considering (1) social-engineering attacks in which a user pastes code that they do not understand and (2) code pasted by a physically proximate attac...
Electrum Electrum 3.0.3
Electrum Electrum
Electrum Electrum 3.0.5
Electrum Electrum 3.0.0
Electrum Electrum 3.0.1
Electrum Electrum 3.0.2
7.5
CVSSv3
CVE-2023-37192
Memory management and protection issues in Bitcoin Core v22 allows malicious users to modify the stored sending address within the app's memory, potentially allowing them to redirect Bitcoin transactions to wallets of their own choosing.
Bitcoin Bitcoin Core 22.0
7.5
CVSSv3
CVE-2023-33297
Bitcoin Core prior to 24.1, when debug mode is not used, allows malicious users to cause a denial of service (e.g., CPU consumption) because draining the inventory-to-send queue is inefficient, as exploited in the wild in May 2023.
Bitcoin Bitcoin Core
7.5
CVSSv3
CVE-2021-3195
bitcoind in Bitcoin Core up to and including 0.21.0 can create a new file in an arbitrary directory (e.g., outside the ~/.bitcoin directory) via a dumpwallet RPC call. NOTE: this reportedly does not violate the security model of Bitcoin Core, but can violate the security model of...
Bitcoin Bitcoin Core
7.5
CVSSv3
CVE-2018-1000892
Bitcoin SV prior to 0.1.1 allows uncontrolled resource consumption when receiving sendheaders messages.
Bitcoinsv Bitcoin Sv
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »