SmartContractResearcher/SmartContractSecurity

SmartContractResearcher/SmartContractSecurity

Releases0

Stars4

Smart Contract Security

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2018-19830 ↗	Dec 31, 2019Tuesday, 31 December 2019, 16:15	7.5 HIGH	5 MEDIUM
The UBSexToken() function of a smart contract implementation for Business Alliance Financial Circle (BAFC), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function is public (by default) and does not check the caller's identity.
CVE-2018-19831 ↗	Dec 31, 2019Tuesday, 31 December 2019, 16:15	7.5 HIGH	5 MEDIUM
The ToOwner() function of a smart contract implementation for Cryptbond Network (CBN), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity.
CVE-2018-19832 ↗	Dec 31, 2019Tuesday, 31 December 2019, 16:15	7.5 HIGH	5 MEDIUM
The NETM() function of a smart contract implementation for NewIntelTechMedia (NETM), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity.
CVE-2018-19833 ↗	Dec 31, 2019Tuesday, 31 December 2019, 16:15	7.5 HIGH	5 MEDIUM
The owned function of a smart contract implementation for DDQ, an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity.
CVE-2018-19834 ↗	Dec 31, 2019Tuesday, 31 December 2019, 16:15	7.5 HIGH	5 MEDIUM
The quaker function of a smart contract implementation for BOMBBA (BOMB), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity.