bug-bounty403
google393
xss350
microsoft305
facebook274
apple184
exploit182
rce175
malware136
cve107
account-takeover94
csrf86
browser85
writeup69
privilege-escalation66
phishing61
dos60
react59
supply-chain56
bragging-post54
authentication-bypass53
node51
cloudflare51
ssrf49
aws48
docker48
access-control46
smart-contract45
reverse-engineering45
web344
ethereum43
defi42
pentest41
oauth41
sql-injection40
lfi37
idor35
info-disclosure33
race-condition33
smart-contract-vulnerability32
cloud31
buffer-overflow30
wordpress29
auth-bypass29
clickjacking29
subdomain-takeover27
solidity27
vulnerability-disclosure25
web-application24
cors23
0
8/10
vulnerability
A critical vulnerability in Axelar Network allowed attackers to force validators to skip votes by exploiting Tendermint's 1MB RPC body size limit, causing validators to be deregistered for missing votes and halting cross-chain operations. The exploit chain leveraged excessive event logs to trigger RPC failures combined with the absence of minimum quorum requirements before validator penalization.
cross-chain
blockchain
validator-attack
denial-of-service
consensus-attack
cosmossdk
rpc-limit
log-flooding
quorum-bypass
axelar-network
evm-interoperability
Axelar Network
Marco Hextor
Immunefi
AxelarGateway
Tendermint
Cosmos SDK
governance proposal 256