GoPlus Security Audit Flags Key Risks in x402 Crypto Projects

GoPlus Security’s audit of more than 30 x402 projects revealed that high-risk vulnerabilities are widespread across the ecosystem.

  Business   Nov 17, 2025   0   8  Add to Reading List
GoPlus Security Audit Flags Key Risks in x402 Crypto Projects

Key Highlights

  • GoPlus Security scanned over 30 projects in the x402 ecosystem, finding that the majority had at least one high-risk issue.
  • The most frequent vulnerabilities were Excessive Authorization (owner can drain funds) and Unlimited Minting (destroying token value).
  • The audit follows the October 28 exploit of 402bridge, where attackers used excessive authorization to steal USDC from over 200 user accounts.

A new security report has raised concerns about the fast-expanding x402 ecosystem, a collection of cryptocurrency projects built around an attempt to revive a long-ignored part of the early internet: the HTTP 402 “Payment Required” status code.

The idea behind x402 is simple on paper. When the web was originally designed, HTTP 402 was intended to signal that a user must pay before accessing a resource. The code was never widely implemented, but developers in the crypto sector have revived the concept to enable automated payments at the protocol level. 

Over the past several months, dozens of projects have adopted the 402 theme, from basic tokens to cross-chain payment tools.

As interest grew—boosted by mentions from major tech and crypto companies—so did speculation. Many of the newest additions to the ecosystem are meme-style tokens launched quickly to capitalize on the trend, often without basic security checks.

Now, GoPlus Security, a blockchain security company known for running automated risk-scanning services and wallet-level security tools, has published a review of more than 30 x402-related projects. The company says the goal of the scan was to map out the types of risks appearing repeatedly as the ecosystem expands.

What GoPlus found

GoPlus used its internal AI-assisted auditing engine to examine x402 projects listed in the x402 sections of Binance Wallet, OKX Wallet, and community-flagged lists. According to the company, the majority of projects scanned showed at least one high-risk issue.

What's Your Reaction?

like

dislike

love

funny

angry

sad

wow







DO NEWSFEED

Supporting doacWeb to be more than open publishing platform, free blogging and contributor network. DO (RSS) NEWSFEED is a RSS reader that displays contents from multiple (user-chosen) websites or blogs by default on doacWeb using RSS Feeds. It is also RSS Aggregator that operates in distributing contents, displaying sources from multiple websites or blogs by default from RSS Feeds possible. See: Phoenix Newsfeed, Opera News, Google News, HuffPost (Huffington Post) ......

Related Posts