bug-bounty495
xss287
google258
microsoft213
facebook181
rce169
apple127
exploit126
bragging-post112
account-takeover112
malware110
cve96
csrf86
privilege-escalation86
stored-xss74
authentication-bypass72
reflected-xss61
phishing59
access-control57
writeup56
web-security55
open-source54
dos52
browser52
input-validation50
ssrf48
defi48
smart-contract47
cross-site-scripting47
cloudflare45
sql-injection44
ethereum44
reverse-engineering44
supply-chain43
react43
oauth42
ai-agents41
aws38
web-application38
web337
lfi37
burp-suite36
docker36
api-security35
information-disclosure34
race-condition33
smart-contract-vulnerability33
html-injection33
idor32
vulnerability-disclosure31
0
3/10
A crypto trader lost $50 million in a single token swap transaction on Aave through CoW Protocol due to extreme slippage (99%+) when attempting to trade a massive order against shallow liquidity pools. Arbitrage bots and block builders captured ~$43 million in profit from the price dislocation, with the user having explicitly confirmed slippage warnings on their mobile device.
defi
slippage
token-swap
liquidity-pool
arbitrage
user-error
aave
ethereum
cow-protocol
front-running
Aave
CoW Protocol
Stani Kulechov
BlockSec
aEthUSDT
aEthAAVE
USDT
Ethereum