Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
False-positive validity for NFT1 genesis transactions in SLPJS
Vulnerability Description
In SLPJS (npm package slpjs) before version 0.27.4, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A poorly implemented SLP wallet or opportunistic attacker could create a seemingly valid NFT1 child token without burning any of the NFT1 Group token type as is required by the NFT1 specification. This is fixed in version 0.27.4.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
不充分的比较
Vulnerability Title
slpjs 安全漏洞
Vulnerability Description
slpjs是一款用于验证和构建简单账本协议(SLP)的JavaScript库。 SLPJS (npm package slpjs)0.27.4之前版本中存在安全漏洞。攻击者可利用该漏洞创建有效的NFT1子令牌。
CVSS Information
N/A
Vulnerability Type
N/A