-
# Handle
rfa
# Vulnerability details
## Impact
more expensive gas usage
## Proof of Concept
instead of using operator && on single require check (XDEFIDistribution.sol line 255). using double req…
-
REPOST as the other issue was closed without any discussion and disregarded the fact other browsers were tried. See https://github.com/omgnetwork/optimism-v2/issues/166
*This was closed with no dis…
-
# Handle
Dravee
# Vulnerability details
## Impact
Solidity defines a naming convention that should be followed.
## Proof of Concept
```
Variable XDEFIDistribution.MAX_TOTAL_XDEFI_SUPPLY (contract…
-
# Handle
WatchPug
# Vulnerability details
https://github.com/XDeFi-tech/xdefi-distribution/blob/3856a42df295183b40c6eee89307308f196612fe/contracts/XDEFIDistribution.sol#L273-L275
```solidity
depo…
-
# Handle
OriDabush
# Vulnerability details
## XDEFIDistribution.sol line 332
The "currentDistributableXDEFI" variable is not used (can use distributableXDEFI instead).
```sol
// function before:
…
-
# Handle
sirhashalot
# Vulnerability details
## Impact
If a user locks funds in the contract, they can only withdraw funds by calling functions that in turn call the `_unlock()` function. The `_u…
-
# Handle
defsec
# Vulnerability details
## Impact
For the arithmetic operations that will never over/underflow, using the unchecked directive (Solidity v0.8 has default overflow/underflow checks)…
-
# Handle
BouSalman
# Vulnerability details
## Vulnerability description
In Contract **XDEFIDistribution** the function **setBaseURI** is missing an event for this admin functionality.
## Impact
U…
-
# Handle
cccz
# Vulnerability details
## Impact
There is a reentrancy vulnerability in the _safeMint function
```
function _safeMint(
address to,
uint256 tokenId,
byt…
-
# Handle
WatchPug
# Vulnerability details
It's a best practice to use constant variables rather than literal values to make the code easier to understand and maintain.
Consider defining a constan…