-
**Describe the bug**
Trying to restrict `telepresence intercept` to specific k8s namespaces by following this guide https://www.telepresence.io/docs/latest/install/helm/. If I install telepresence wi…
bzlom updated
2 months ago
-
**Github username:** @NicolaMirchev
**Twitter username:** EgisSec
**Submission hash (on-chain):** 0x6ecbce60bcd9552924e1d97a4071d452c97d7300d0fe3cf05a4625e452e0af95
**Severity:** medium
**Descriptio…
-
# Lines of code
https://github.com/code-423n4/2024-07-basin/blob/7d5aacbb144d0ba0bc358dfde6e0cc913d25310e/src/Well.sol#L864
# Vulnerability details
## Impact
Passing an arbitrary from address to t…
-
I currently do not have time for the test, also because this blocks me: #6738. I try to add one asap.
Issue is the following:
Preconditions:
- You have an _OneToMany_ with _orphanRemoval_ set f…
-
**Test description:**
The test starts a (second) cluster with ssl disabled, and adds it to the manager.
Afterwards, the test enables ssl encryption for the cluster, without updating the manager, a…
-
# Lines of code
https://github.com/code-423n4/2023-10-party/blob/main/contracts/proposals/ArbitraryCallsProposal.sol#L74-L109
# Vulnerability details
## Impact
Msg.sender can lose some eth when ex…
-
### Game and System Information
- Local build of 1.15.4 (testing with a build directly from the tagged commit)
- GCC 10 Running on Debian GNU/Linux bullseye/sid
### Describe the bug
Randomly-…
-
eeyore
Medium
# Attacker can steel rewards from RewardsDistributorV2 when flashloaning a veNFT.
## Summary
An attacker can exploit the RewardsDistributorV2 contract to steal rewards by flashloanin…
-
## Flow 1
**/search (inc)**
- is push based incremental search supported?
## Flow 2
**/on_init**
- provider_tax_number is missing in /tags; must be NACK'd
**/confirm**
- url and t…
-
Trust
high
# Theft of initial bonds from proposers who are using smart wallets
## Summary
Proposal of output roots through the DisputeGameFactory from Smart Wallets is vulnerable to frontrunning a…