Homograph attack allows Unicode lookalike characters to bypass validation.

High

junderw published GHSA-xq7p-g2vc-g82p

Apr 30, 2025

Package

base-x (npm)

Affected versions

=5.0.0

=4.0.0

<=3.0.10

Patched versions

5.0.1

4.0.1

3.0.11

Description

Impact

Attackers can deceive users into sending funds to an unintended address.

Patches