-
# Lines of code
https://github.com/wenwincom/wenwin-contracts/blob/main/src/Lottery.sol#L113
# Vulnerability details
## Impact
Contract miss check for msg.sender != frontend, so user can buy ticke…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/Lottery.sol#L175
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/LotterySetup.sol#L80
https://github.com/code-423…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8feb73c771d11c257eed997e8/src/Lottery.sol#L170-L177
# Vulnerability details
The Wenwin docs [note](https://docs.wen…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8feb73c771d11c257eed997e8/src/Lottery.sol#L125-L128
# Vulnerability details
When accounting for referrals, the `bef…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8feb73c771d11c257eed997e8/src/LotterySetup.sol#L141
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/Lottery.sol#L110-L131
# Vulnerability details
When tickets are bought, the protocol allows to specify a frontend that wil…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8feb73c771d11c257eed997e8/src/Lottery.sol#L110
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8feb73…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/91b89482aaedf8b8feb73c771d11c257eed997e8/src/Lottery.sol#L110-L131
# Vulnerability details
## Impact
When buying tickets using buy…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/interfaces/ILottery.sol#L154-L159
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/Lottery.sol#L170-L176
# Vulne…
-
# Lines of code
https://github.com/code-423n4/2023-03-wenwin/blob/main/src/RNSourceController.sol#L89-L104
# Vulnerability details
## Impact
* Users need to completely trust the owner since he wil…