CVE-2018-1000023

Published: 2018-02-09T23:29Z

Last Modified: 2024-11-21T03:39Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

Bitpay/insight-api Insight-api version 5.0.0 and earlier contains a CWE-20: input validation vulnerability in transaction broadcast endpoint that can result in Full Path Disclosure. This attack appear to be exploitable via Web request. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt