Vulnerabilities > CVE-2018-12083 - Unspecified vulnerability in Goal Bonanza Project Goal Bonanza

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
NONE
network
low complexity
goal-bonanza-project

Summary

The mintToken function of a smart contract implementation for GOAL Bonanza (GOAL), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

Vulnerable Configurations

Part Description Count
Application
Goal_Bonanza_Project
1