Security Research Institute: Several x402 ecosystem projects have been found to have risks, including over-authorization and signature replay issues.

Bitget App

Trade smarter

Cointime2025/11/17 12:06

By:Cointime

On November 17, GoPlus Security Research Institute conducted a detailed security risk scan on more than 30 x402 projects and community warning risk projects in Binance Wallet and OKX Wallet, finding that the following projects have risks of excessive authorization, signature replay, HonyPot (Pixiu token), and unlimited minting.

FLOCK (0x5ab3): The transferERC20 function allows the owner to withdraw any amount of any token from the contract.

x420 (0x68e2): The crosschainMint function can mint tokens without restriction.

U402 (0xd2b3): The mintByBond function allows unlimited token minting by bond.

MRDN (0xe57e): The withdrawToken function allows the owner to withdraw any amount of any token from the contract.

PENG (0x4444ee, 0x444450, 0x444428): The manualSwap function allows the owner to withdraw ETH from the contract, and the transferFrom function bypasses allowance checks for special accounts.

x402Token (0x40ff): The transferFrom function bypasses allowance checks for special accounts.

x402b (0xd8af5f): The manualSwap function allows the owner to withdraw ETH from the contract, and the transferFrom function bypasses allowance checks for special accounts.

x402MO (0x3c47df): The manualSwap function allows the owner to withdraw ETH from the contract, and the transferFrom function bypasses allowance checks for special accounts.

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Earn new token airdrops

Lock your assets and earn 10%+ APR

Lock now!

- JUST DAO suspends USDJ operations, pegging it to TRX at 1:1.5532 to stabilize amid crypto volatility and regulatory scrutiny. - USDJ surged 187.82% pre-announcement, outperforming Bitcoin’s 0.77% drop as TRON-based assets show resilience. - Market cap fell to $3.21T as USDJ’s TRX peg aims to reduce fiat reliance and align with DeFi’s blockchain-native trends. - Mixed reactions highlight risks of TRX volatility undermining the peg, while analysts foresee TRX’s DeFi integration boosting its 2025 appeal.

Bitget-RWA•2025/11/18 03:30

TRX News Today: JUST DAO Links USDJ with TRX to Address Market Fluctuations and Regulatory Challenges

TWT's Updated Tokenomics Framework: Transforming DeFi Governance and Enhancing Investor Yields

- Trust Wallet's TWT token redefines DeFi governance through utility-driven value creation, deflationary supply, and community governance in 2025. - Permanent burning of 88.9 billion tokens creates scarcity, while gas discounts, collateral capabilities, and governance rights align utility with platform adoption. - Hybrid investor returns combine scarcity-driven appreciation, staking yields, and fee-burn mechanisms, but depend on Solana ecosystem performance and utility adoption. - Challenges include fragme

Bitget-RWA•2025/11/18 03:28