Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

漏洞数据库 - AI 增强中文 CVE 平台 与情报

浏览 22+ 条来自 NVD 与 CNNVD 的 CVE 漏洞,配 AI 中文翻译、AI POC 生成、每日情报;可按厂商、产品、严重等级、CWE 检索。

Clear Filters
Found 22 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-54070 OpenZeppelin Contracts's Bytes's lastIndexOf function with position argument performs out-of-bound memory access on empty buffers OpenZeppelinopenzeppelin-contracts--2025-07-17 18:25:02 Deep Dive
CVE-2024-45304 OwnableTwoStep allows a pending owner to accept ownership after the original owner has renounced ownership in cairo-contracts OpenZeppelincairo-contracts Medium 5.3 2024-08-30 23:51:01 Deep Dive
CVE-2024-27094 OpenZeppelin Contracts base64 encoding may read from potentially dirty memory OpenZeppelinopenzeppelin-contracts Medium 6.5 2024-02-29 18:18:25 Deep Dive
CVE-2023-49798 Duplicated execution of subcalls in OpenZeppelin Contracts OpenZeppelinopenzeppelin-contracts Medium 5.9 2023-12-08 23:35:24 Deep Dive
CVE-2023-40014 OpenZeppelin Contracts's ERC2771Context with custom forwarder may lead to zero-valued _msgSender OpenZeppelinopenzeppelin-contracts Medium 5.3 2023-08-10 19:52:56 Deep Dive
CVE-2023-34459 OpenZeppelin Contracts's MerkleProof multiproofs may allow proving arbitrary leaves for specific trees OpenZeppelinopenzeppelin-contracts Medium 5.3 2023-06-16 22:13:18 Deep Dive
CVE-2023-34234 Governor proposal creation may be blocked by frontrunning in OpenZeppelin OpenZeppelinopenzeppelin-contracts Medium 5.3 2023-06-07 17:06:10 Deep Dive
CVE-2023-30541 TransparentUpgradeableProxy clashing selector calls may not be delegated in @openzeppelin/contracts OpenZeppelinopenzeppelin-contracts Medium 5.3 2023-04-17 21:37:29 Deep Dive
CVE-2023-30542 GovernorCompatibilityBravo may trim proposal calldata OpenZeppelinopenzeppelin-contracts Medium 6.8 2023-04-16 07:10:13 Deep Dive
CVE-2023-26488 OpenZeppelin Contracts contains Incorrect Calculation OpenZeppelinopenzeppelin-contracts Medium 6.5 2023-03-03 21:08:35 Deep Dive
CVE-2023-23940 OpenZeppelin Contracts for Cairo is vulnerable to signature validation bypass OpenZeppelincairo-contracts Medium 6.4 2023-02-03 19:43:11 Deep Dive
CVE-2022-39384 OpenZeppelin Contracts initializer reentrancy may lead to double initialization OpenZeppelinopenzeppelin-contracts Medium 5.6 2022-11-04 00:00:00 Deep Dive
CVE-2022-35961 ECDSA signature malleability in OpenZeppelin Contracts OpenZeppelinopenzeppelin-contracts High 7.9 2022-08-14 00:05:09 Deep Dive
CVE-2022-35915 Unbounded gas consumption in @openzeppelin/contracts OpenZeppelinopenzeppelin-contracts Medium 5.3 2022-08-01 21:05:11 Deep Dive
CVE-2022-35916 Cross chain utilities for Arbitrum L2 see EOA calls as cross chain calls OpenZeppelinopenzeppelin-contracts Medium 5.3 2022-08-01 21:00:30 Deep Dive
CVE-2022-31198 GovernorVotesQuorumFraction updates to quorum may affect past defeated proposals in @openzeppelin/contracts OpenZeppelinopenzeppelin-contracts High 7.5 2022-08-01 21:00:17 Deep Dive
CVE-2022-31170 OpenZeppelin Contracts's ERC165Checker may revert instead of returning false OpenZeppelinopenzeppelin-contracts High 7.5 2022-07-21 14:00:18 Deep Dive
CVE-2022-31172 OpenZeppelin Contracts's SignatureChecker may revert on invalid EIP-1271 signers OpenZeppelinopenzeppelin-contracts High 7.5 2022-07-21 13:55:11 Deep Dive
CVE-2022-31153 OpenZeppelin Contracts for Cairo account cannot process transactions on Goerli OpenZeppelincairo-contracts Medium 6.5 2022-07-15 17:50:14 Deep Dive
CVE-2021-41264 UUPSUpgradeable vulnerability in OpenZeppelin Contracts OpenZeppelinopenzeppelin-contracts Critical 9.8 2021-11-12 17:55:11 Deep Dive