decanus

1 exploit Active since Jan 2020
CVE-2020-5232 WRITEUP HIGH WRITEUP
ENS Domains < 0.1.0 and ensdomains/ens < 0.4.0 - Improper Authorization via Ownership Transfer Trapdoor
A user who owns an ENS domain can set a trapdoor, allowing them to transfer ownership to another user, and later regain ownership without the new owners consent or awareness. A new ENS deployment is being rolled out that fixes this vulnerability in the ENS registry.
CVSS 8.7