bug-bounty406
google396
xss352
microsoft309
facebook283
exploit187
apple185
rce176
malware142
cve110
account-takeover94
browser88
csrf86
writeup70
privilege-escalation66
phishing62
dos60
react60
supply-chain57
bragging-post55
authentication-bypass54
node51
cloudflare51
ssrf50
aws48
docker48
access-control46
smart-contract45
reverse-engineering45
web345
ethereum43
defi42
oauth41
pentest41
sql-injection40
lfi36
idor35
info-disclosure34
race-condition34
smart-contract-vulnerability32
cloud32
buffer-overflow31
auth-bypass30
clickjacking29
wordpress29
solidity27
subdomain-takeover27
vulnerability-disclosure25
ctf24
web-application24
0
8/10
vulnerability
A critical vulnerability in Axelar Network allowed attackers to force validators to skip votes by exploiting Tendermint's 1MB RPC body size limit, causing validators to be deregistered for missing votes and halting cross-chain operations. The exploit chain leveraged excessive event logs to trigger RPC failures combined with the absence of minimum quorum requirements before validator penalization.
cross-chain
blockchain
validator-attack
denial-of-service
consensus-attack
cosmossdk
rpc-limit
log-flooding
quorum-bypass
axelar-network
evm-interoperability
Axelar Network
Marco Hextor
Immunefi
AxelarGateway
Tendermint
Cosmos SDK
governance proposal 256