Stellar


reports in last 90 days

3

disclosed resolved issues

1

disclosed informative issues

1

disclosed N/A issues

Listed on HackerOne — Updated on 2019/10/15

Bug Title Bug Type Found By Report Info Report Status

High Exploitable vulnerability in SDEX

Business Logic Errors orbitlens Time to triage: 0 Days and 9 hours


Time to close: 170 Days and 10 hours
Resolved

High It's possible to put SDX orderbook into invalid state and execute trades at arbitrary price

Business Logic Errors nebolsin Time to triage: 0 Days and 1 hours


Time to close: 194 Days and 10 hours
Resolved

No rating heap-buffer-overflow (READ of size 1) in cpptoml::parser::consume_whitespace()

Heap Overflow geeknik Time to triage: 3 Days and 2 hours


Time to close: 9 Days and 22 hours
Resolved

Medium HTTP - Basic Authentication on https://www.stellar.org/wp-login.php

Violation of Secure Design Principles mrr3boot Issue was not triaged


Time to close: 0 Days and 4 hours
Not-applicable

None Session Cookie without HttpOnly and secure flag set

Violation of Secure Design Principles k4yy1s Issue was not triaged


Time to close: 1 Days and 11 hours
Informative