Loading HuntDB...

Vulnerability Intelligence by wss.sh

Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News

More Sources

HackerOne Reports

Bug bounty disclosures

WordPress Vulnerabilities

WordPress plugins & themes

Tools & Data

Trending Insights

Popular vulnerabilities

Advanced Search

Filter & search CVEs

Product Inventory

Software & vendors

Sign In Sign Up

Hyperledger - HackerOne Reports

View on HackerOne

26

Total Reports

1

Critical

10

High

4

Medium

3

Low

Remote denial of service in HyperLedger Fabric

Reported by: fatal0 | Disclosed:

High

Weakness: Uncontrolled Resource Consumption

fix(security):Path Traversal Bug

Reported by: bhaskar_ram | Disclosed:

High

Weakness: Path Traversal

Unauthorized packages modification or secrets exfiltration via GitHub actions

Reported by: dusty_wormwood | Disclosed:

High

Weakness: Improper Access Control - Generic

Bounty: $1500.00

Memory Leak in bytes_to_hexstring Function

Reported by: gajnithehero | Disclosed:

Low

Weakness: Use After Free

Vulnerabilities in Endorsement Mechanism of Private Data Related Transactions in Hyperledger Fabric 2.0

Reported by: swang1994 | Disclosed:

Insecure TLS Configuration #3530

Reported by: bhaskar_ram | Disclosed:

Low

Weakness: Use of a Broken or Risky Cryptographic Algorithm

Brute Force of fabric-ca server admin account

Reported by: xiaoc | Disclosed:

High

Weakness: Improper Restriction of Authentication Attempts

Code exec on Github runner via Pull request name

Reported by: another_dude | Disclosed:

Medium

Weakness: Code Injection

many commands can be manipulated to delete identities or affiliations

Reported by: cet2000 | Disclosed:

Medium

Weakness: Improper Authentication - Generic

Bounty: $500.00

Corsa Site Scripting Vulnerability (XSS)

Reported by: bhaskar_ram | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Reflected

Cross Site Scripting Vulnerability in fabric-sdk-py source code

Reported by: bhaskar_ram | Disclosed:

Weakness: Cross-site Scripting (XSS) - DOM

fix(cmd-socketio-server): mitigate cross site scripting attack #2068

Reported by: bhaskar_ram | Disclosed:

High

Weakness: Cross-site Scripting (XSS) - Reflected

Bounty: $100.00

The “payload” Field of Transactions in a Block Reveals the Private Data to All Peers

Reported by: swang1994 | Disclosed:

RCE vulnerability in Hyperledger Fabric SDK for Java

Reported by: freskimo | Disclosed:

Medium

Weakness: Deserialization of Untrusted Data

Bounty: $200.00

Vulnerability in Private Data Endorsement Policy Management in Hyperledger Fabric 2.0

Reported by: swang1994 | Disclosed:

Remote denial of service in HyperLedger Fabric

Reported by: fatal0 | Disclosed:

High

Weakness: Uncontrolled Resource Consumption

Relative Path Traversal vulnerability in fabric-private-chaincode

Reported by: bhaskar_ram | Disclosed:

Weakness: Path Traversal

Docker Secret Disclosure via GitHub Actions Cache Poisoning

Reported by: adnanthekhan | Disclosed:

High

Weakness: Information Disclosure

Bounty: $2000.00

CVE-2023-46132

Reported by: yacovm | Disclosed:

High

Weakness: Deserialization of Untrusted Data

Dependency confusion in https://github.com/hyperledger/aries-mobile-agent-react-native

Reported by: r3drush | Disclosed:

Weakness: Code Injection

Page 1 of 2 Next