Agoric


2 total issues disclosed

$0 total paid publicly


Most disclosed (1 disclosures) — Cross-site Scripting (XSS) - Stored

View disclosed reports



Disclosed Reports


Report Title Vulnerability Type Disclosed By Severity Disclosed on
Stored XSS in agoric-sdk - malicious iframes, malicious svg Cross-site Scripting (XSS) - Stored sickcodes High 2020-10-28
Improper Input Validation allows an attacker to "double spend" or "respend", violating the integrity of the message command history or causing DoS Improper Input Validation sickcodes Medium 2020-10-28