bug-bounty493
xss285
google254
microsoft208
facebook183
rce165
apple128
exploit126
bragging-post112
account-takeover111
malware102
cve92
privilege-escalation85
csrf85
stored-xss74
authentication-bypass72
reflected-xss61
phishing57
writeup56
access-control56
web-security54
open-source54
dos53
browser51
input-validation50
defi48
ssrf48
cross-site-scripting47
smart-contract47
cloudflare45
ethereum44
supply-chain43
sql-injection43
react42
oauth42
ai-agents40
reverse-engineering39
web-application38
web337
aws37
burp-suite36
docker36
lfi35
api-security35
information-disclosure34
html-injection33
smart-contract-vulnerability33
idor32
race-condition31
vulnerability-disclosure31
0
3/10
A crypto trader lost $50 million in a single token swap transaction on Aave through CoW Protocol due to extreme slippage (99%+) when attempting to trade a massive order against shallow liquidity pools. Arbitrage bots and block builders captured ~$43 million in profit from the price dislocation, with the user having explicitly confirmed slippage warnings on their mobile device.
defi
slippage
token-swap
liquidity-pool
arbitrage
user-error
aave
ethereum
cow-protocol
front-running
Aave
CoW Protocol
Stani Kulechov
BlockSec
aEthUSDT
aEthAAVE
USDT
Ethereum