The OpenSea NFT-marketplace team has been filled with strife, which threatened the disclosure of these coristuvachs. The problem was known to the specialists of the company Imperva.
Imperva Red Team discovered a cross-site search vulnerability affecting the #NFT marketplace #OpenSea.
This vulnerability allows for the deanonymization of users, potentially revealing a user’s identity. https://t.co/nGQWceeGEc
— Imperva (@Imperva) March 9, 2023
Experts from the cybersecurity company explained that the bug allowed the deanonymization of platform clients by linking to an IP address, giving a browser session, and an email with a specific NFT.
According to the experts, the reason for the pardon was the wrong setting of the iFrame-resizer library. The strife gave the opportunity to take the data through inter-site search.
Vykoristuyuchi information, scho turn for requests, the attacker could send a potential victim of phishing scam.
Guessing, 2022 is the rock of OpenSea were the victims of an attackvartistyu per kilka million dollars.