Invocation Security: Navigating Vulnerabilities in Solana CPIs
Cross-program invocation (CPI) is the mechanism on Solana through which one program calls another. It's used for system
Maxwell Dulin
Latest
Research
·
Cosmos IBC Reentrancy Infinite Mint
This post discusses a vulnerability in ibc-go, a reference implementation of the Cosmos Inter-Blockchain Communication (IBC) protocol. A reentrancy vulnerability during the handling of timeout messages could have allowed an attacker to mint an infinite amount of IBC tokens on affected Cosmos chains.