Browse all 7 CVE security advisories affecting simpleledger. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Simpleledger is a blockchain-based accounting platform designed for tracking financial assets and transactions. Historically, it has been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for its seven recorded CVEs. The platform's security posture has been compromised through insufficient input validation and improper access controls, though no major public incidents have been widely documented. Its architecture relies on smart contracts, introducing additional attack surfaces for potential exploits. Security researchers have identified consistent patterns in vulnerability classes, highlighting ongoing challenges in input sanitization and authentication mechanisms within the ecosystem.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2020-15130 | False-positive validity for NFT1 genesis transactions in SLPJS — slpjsCWE-697 | 7.5 | High | 2020-07-30 |
| CVE-2020-15131 | False-positive validity for NFT1 genesis transactions in SLP Validate — slp-validate.jsCWE-697 | 7.5 | High | 2020-07-30 |
| CVE-2020-11072 | False-negative validation results in MINT transactions with invalid baton — slp-validateCWE-697 | 8.6 | High | 2020-05-12 |
| CVE-2020-11071 | False-negative validation results in MINT transactions with invalid baton — slpjsCWE-697 | 8.6 | High | 2020-05-12 |
| CVE-2020-11014 | BIP LI01 output reordering may cause malformed SLP MINT transactions in Electron-Cash-SLP — Electron-Cash-SLP | 6.1 | Medium | 2020-04-28 |
| CVE-2019-16762 | Validator parsing discrepancy due to string encoding in NPM slpjs — slpjsCWE-20 | 5.7 | Medium | 2019-11-15 |
| CVE-2019-16761 | Validator parsing discrepancy due to string encoding in NPM slp-validate 1.0.0 — slp-validateCWE-20 | 5.7 | Medium | 2019-11-15 |
This page lists every published CVE security advisory associated with simpleledger. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.