Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
False-positive validity for NFT1 genesis transactions in SLP Validate
Vulnerability Description
In SLP Validate (npm package slp-validate) before version 1.2.2, there is a vulnerability to false-positive validation outcomes for the NFT1 Child Genesis transaction type. A poorly implemented SLP wallet or opportunistic attacker could create a seemingly valid NFT1 child token without burning any of the NFT1 Group token type as is required by the NFT1 specification. This is fixed in version 1.2.2.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Vulnerability Type
不充分的比较
Vulnerability Title
slp-validate 安全漏洞
Vulnerability Description
slp-validate是一款轻量级SLP(简单账本协议)验证器,它具有预广播验证和刻录保护等功能。 SLP Validate (npm package slp-validate) 1.2.2之前版本中存在安全漏洞。攻击者可利用该漏洞创建有效的NFT1子令牌。
CVSS Information
N/A
Vulnerability Type
N/A