cvedb.io
CVE-2018-12083
HIGH · CVSS 7.5
EPSS exploitation probability: 0%
Published 2018-06-25T11:29:00.827 · Last modified 2026-06-17T01:37:07.220

Summary

The mintToken function of a smart contract implementation for GOAL Bonanza (GOAL), a tradable Ethereum ERC20 token, has no period constraint, which allows the owner to increase the total supply of the digital assets arbitrarily so as to make profits, aka the "tradeTrap" issue.

Affected products

goal_bonanza_project — goal_bonanza

Does this affect you?

Add your gear to cvedb and we'll alert you only when goal_bonanza_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.