Posted by Harry Sintonen via Fulldisclosure on May 18

NiceHash Miner Excavator API Cross-Site Request Forgery
=======================================================
The latest version of this advisory is available at:
https://sintonen.fi/advisories/nicehash-miner-excavator-api-csrf.txt

Overview
——–

NiceHash Miner Excavator plugin contains a vulnerability that enables any external
web site to send commands to the local miner instance, and to redirect the mined
coins to arbitrary mining…
Read More – Full Disclosure


By |2021-05-18T18:19:01-04:00May 18th, 2021|