-
**Github username:** --
**Twitter username:** --
**Submission hash (on-chain):** 0xd593660cac8f5ccaf6aa5c4277d6cdab1e16344358650a0e32f49e31355bf8c0
**Severity:** high
**Description:**
**Description*…
-
**Github username:** @itsabinashb
**Twitter username:** itsabinashb
**Submission hash (on-chain):** 0xeafcb7a625760ac3151eb9bf15ec8b6114d11ffcd10320e28413713fe1b5821d
**Severity:** medium
**Descript…
-
This issue will track the effort to implement some mechanism to scan (or sanitize) `.stl` files committed in PRs
### Problem
Today @goldfishlaser and I realized that we don't have a system in-pl…
-
Tendency
High
# Unchecked `deposit_token` Allows Malicious Token Substitution During Withdrawals
### Summary
A verified withdrawal message can be maliciously intercepted, replacing the expected to…
-
Silvermist
High
# A malicious user can withdrawals another user's money
### Summary
A shared vault authority signing mechanism will cause unauthorized withdrawals for users, as User A can withdr…
-
I just made it and honestly it doesnt even work as well as i wanted so. Im not sure how it can be malicious
-
> Other tools (...and pushover) may have similar [compromsing] powers in this environment
> [...]
> The goal is not to cast aspersions on the vendor, but to point out that the system is fundamentall…
-
> Other tools (supabase, ...) may have similar [compromising] powers in this environment
> [...]
> The goal is not to cast aspersions on the vendor, but to point out that the system is fundamentally…
-
We need to start investigating and hardening Iroha against malicious network inputs. The consensus is robust against malicious peers but is not robust against many peers being successfully targeted by…
-
I compiled this on my computer and my antivirus Sentinel One immediately flagged uffs.exe as a malicious process and quarantined it.
What makes it think it's malicious?