proxy-vulnerabilities

2 articles
Sort: New Top Best
clear filter
bug-bounty622 facebook479 xss316 google174 microsoft120 rce102 apple72 csrf60 web355 account-takeover53 writeup51 exploit43 sqli41 dos36 ssrf34 cve33 cloudflare32 privilege-escalation29 defi28 malware27 node26 smart-contract-vulnerability25 idor25 subdomain-takeover24 clickjacking23 smart-contract23 ethereum23 access-control21 react21 vulnerability-disclosure21 reverse-engineering20 auth-bypass19 aws19 remote-code-execution18 lfi18 cloud17 docker17 cors17 oauth17 supply-chain17 race-condition17 info-disclosure16 browser14 authentication-bypass14 solidity14 phishing14 denial-of-service11 sql-injection11 delegatecall11 wordpress10
0 3/10
OpenZeppelin
bragging-post

Security researcher's portfolio showcasing multiple critical vulnerability disclosures in DeFi and NFT smart contracts, primarily focused on proxy vulnerabilities (UUPS), uninitialized logic contracts, and access control issues that collectively protected over $50M in TVL. While demonstrating significant impact, the article lacks technical depth and primarily lists findings with references to external postmortems rather than detailed exploitation methodology.

smart-contract-security bug-bounty defi-vulnerabilities proxy-vulnerabilities uups-proxy delegatecall access-control uninitialized-variables arbitrary-delegatecall selfdestruct token-theft erc20 mint-function bragging-post
OpenZeppelin 88mph Polygon KeeperDAO Rivermen NFT iosiro Immunefi Alchemix Ondo Finance pxMythics abwagmi AxonsToken Code4rena yAcademy Curve Finance Ashiq Amien Dedaub
ashiq.co.za · Ashiq Amien · 4 hours ago · details
0 2/10
pxMythics
bug-bounty

Portfolio page showcasing multiple critical smart contract vulnerabilities disclosed across DeFi/NFT protocols, including access control flaws, uninitialized UUPS proxies enabling arbitrary delegatecalls, and broken token transfer functions. Author details bounty payouts and rescued funds across 88mph, Polygon, KeeperDAO, and other projects, with limited technical depth on each vulnerability.

smart-contract-vulnerability access-control defi proxy-vulnerabilities uups-proxy delegatecall bug-bounty vulnerability-disclosure solidity nft token-theft dos uninitialized-proxy arbitrary-delegatecall selfdestruct bragging-post
pxMythics 88mph Polygon KeeperDAO Rivermen NFT OpenZeppelin abwagmi AxonsToken Alchemix Ondo Finance Code 4rena Immunefi iosiro Damn Vulnerable DeFi Decently Safe DeFi yAcademy Curve Finance BSides Cape Town Dedaub Ashiq Amien
ashiq.co.za · Ashiq Amien · 4 hours ago · details