Vulnerabilities > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-25 | CVE-2018-11040 | Inclusion of Functionality from Untrusted Control Sphere vulnerability in multiple products Spring Framework, versions 5.0.x prior to 5.0.7 and 4.3.x prior to 4.3.18 and older unsupported versions, allows web applications to enable cross-domain requests via JSONP (JSON with Padding) through AbstractJsonpResponseBodyAdvice for REST controllers and MappingJackson2JsonView for browser requests. | 7.5 |
| 2018-06-25 | CVE-2018-10956 | Path Traversal vulnerability in Ipconfigure Orchid Core VMS 2.0.5 IPConfigure Orchid Core VMS 2.0.5 allows Directory Traversal. | 7.5 |
| 2018-06-25 | CVE-2017-9312 | Improper Input Validation vulnerability in Rockwellautomation Allen-Bradley L30Erms Firmware 30 Improperly implemented option-field processing in the TCP/IP stack on Allen-Bradley L30ERMS safety devices v30 and earlier causes a denial of service. | 7.5 |
| 2018-06-25 | CVE-2018-12084 | Unspecified vulnerability in Bitasean The mintToken function of a smart contract implementation for BitAsean (BAS), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |
| 2018-06-25 | CVE-2018-12083 | Unspecified vulnerability in Goal Bonanza Project Goal Bonanza The mintToken function of a smart contract implementation for GOAL Bonanza (GOAL), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |
| 2018-06-25 | CVE-2018-12082 | Unspecified vulnerability in Fujinto Project Fujinto The mintToken function of a smart contract implementation for Fujinto (NTO), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |
| 2018-06-25 | CVE-2018-12081 | Unspecified vulnerability in Tgtcoins Target Coin The mintToken function of a smart contract implementation for Target Coin (TGT), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |
| 2018-06-25 | CVE-2018-12080 | Unspecified vulnerability in Intchain Node Token The mintToken function of a smart contract implementation for Internet Node Token (INT), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |
| 2018-06-25 | CVE-2018-12079 | Unspecified vulnerability in Substratum The mintToken function of a smart contract implementation for Substratum (SUB), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |
| 2018-06-25 | CVE-2018-12078 | Unspecified vulnerability in Polyai Project Polyai The mintToken function of a smart contract implementation for PolyAI (AI), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue. | 7.5 |