Vulnerabilities > CVE-2018-12083 - Unspecified vulnerability in Goal Bonanza Project Goal Bonanza

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

goal-bonanza-project

NVD

Published: 2018-06-25

Updated: 2019-10-03

Summary

The mintToken function of a smart contract implementation for GOAL Bonanza (GOAL), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

Vulnerable Configurations

Part	Description	Count
Application	Goal_Bonanza_Project Goal Bonanza Project Goal Bonanza -	1

References

https://peckshield.com/2018/06/11/tradeTrap/