bug-bounty496
xss255
rce132
bragging-post119
google109
account-takeover107
open-source92
privilege-escalation90
authentication-bypass90
facebook86
csrf83
malware83
microsoft76
stored-xss75
access-control73
ai-agents67
web-security64
reflected-xss63
exploit62
cve61
phishing59
input-validation51
sql-injection50
smart-contract49
defi48
information-disclosure48
cross-site-scripting48
privacy47
ethereum46
tool46
reverse-engineering45
ssrf44
api-security43
vulnerability-disclosure39
ai-security38
web-application38
burp-suite37
llm37
opinion37
writeup36
apple36
dos36
cloudflare35
automation35
responsible-disclosure35
web333
infrastructure33
smart-contract-vulnerability33
html-injection33
machine-learning32
0
5/10
vulnerability
A critical vulnerability in the Betverse ICO Token contract's transferTokenToLockedAddresses() function was caused by incorrect public visibility, allowing anyone to steal BToken by transferring amounts to arbitrary time lock addresses. The article also covers related access control vulnerabilities in Ocean Protocol and Oasys smart contracts.
Betverse
Immunefi
Ocean Protocol
Oasys
Shanmuga Bharathi