cvedb.io
CVE-2018-12078
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-06-25T11:29:00.543 · Last modified 2026-06-17T01:37:06.590

Summary

The mintToken function of a smart contract implementation for PolyAI (AI), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

Affected products

polyai_project — polyai

Does this affect you?

Add your gear to cvedb and we'll alert you only when polyai_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.