code-423n4 2021-04-meebits-findings issues

code-423n4 / 2021-04-meebits-findings

0 stars 0 forks source link

issues

Newest

Newest Most commented Recently updated Oldest Least commented Least recently updated

Beebots.randomIndex() Can Be Manipulated To Not Be Random Without Costing Alice Anything

#85 code423n4 opened 3 years ago
0
External over public

#84 code423n4 opened 3 years ago
0
Optimizations storage

#83 code423n4 opened 3 years ago
0
Constructor lack of zero address validation

#82 code423n4 opened 3 years ago
0
Randomnesss can be manipulated

#81 code423n4 opened 3 years ago
0
Nonce not modified

#80 code423n4 opened 3 years ago
0
Beebots.contentHash() Is Currently Set As "todo"

#79 code423n4 opened 3 years ago
0
Beebots.tokenURI() References A Non-Existent Domain at "TODO"

#78 code423n4 opened 3 years ago
0
Beebots.TradeValid() Will Erroneously Return True When Maker Is Set To Address(0) and makerIds Are Set To The TokenIds of Unminted Beebot NFTs

#77 code423n4 opened 3 years ago
1
Can cancel the same offer several times

#76 code423n4 opened 3 years ago
0
NFT can be minted for free after sale ended

#75 code423n4 opened 3 years ago
0
The randomIndex() can be determined

#74 code423n4 opened 3 years ago
0
function tokenByIndex treats last index as invalid

#73 code423n4 opened 3 years ago
1
function ownerOf does not check if it is a valid _tokenId

#72 code423n4 opened 3 years ago
0
Use always uint256

#71 code423n4 opened 3 years ago
0
contentHash is not used

#70 code423n4 opened 3 years ago
0
PauseMarket() can be optimized

#69 code423n4 opened 3 years ago
0
creatorNftMints is assigned only 0 or 1

#68 code423n4 opened 3 years ago
0
Require() not needed

#67 code423n4 opened 3 years ago
1
Lack of chain information in the signed data leads to potential replay attacks.

#66 code423n4 opened 3 years ago
0
Should use `SafeMath.add` in the `acceptTrade` function.

#65 code423n4 opened 3 years ago
0
Nonce does not increase during the entire sale.

#64 code423n4 opened 3 years ago
0
No zero check on constructor inputs.

#63 code423n4 opened 3 years ago
0
The `ownerOf` function requires checking if the owner is non-zero.

#62 code423n4 opened 3 years ago
0
Several functions in the ERC721 interface are not declared `payable`.

#61 code423n4 opened 3 years ago
0
cancelOffer() is susceptible to front-running

#60 code423n4 opened 3 years ago
1
Market pause does not pause cancelOffer()

#59 code423n4 opened 3 years ago
0
event Deposit when value is 0

#58 code423n4 opened 3 years ago
0
Market pause does not pause tradeValid()

#57 code423n4 opened 3 years ago
0
event Mint parameter minter

#56 code423n4 opened 3 years ago
0
Design susceptible to taker griefing on acceptTrade()

#55 code423n4 opened 3 years ago
0
Signature malleability of EVM's ecrecover in verify()

#54 code423n4 opened 3 years ago
0
mint for 0 cost when the sale is over

#53 code423n4 opened 3 years ago
1
nonce always remains 0

#52 code423n4 opened 3 years ago
0
Incorrect use of test parameterization for baseURI value in tokenURI()

#51 code423n4 opened 3 years ago
0
.transfer is not safe to use with custom smart contracts

#50 code423n4 opened 3 years ago
0
ERC721Metadata Spec mismatch from lack of input validation in tokenURI()

#49 code423n4 opened 3 years ago
0
ERC-721 Enumerable Spec mismatch for return value of tokenByIndex() function

#48 code423n4 opened 3 years ago
0
ERC-721 Enumerable Spec mismatch for index of tokenByIndex() function

#47 code423n4 opened 3 years ago
1
Potential reentrancy in safeTransferFrom functions

#46 code423n4 opened 3 years ago
0
Use of transfer() may lead to failures

#45 code423n4 opened 3 years ago
0
Incorrect createVia argument used in mintWithAlphaOrBeta function

#44 code423n4 opened 3 years ago
0
Deployer minting to arbitrary addresses could trick/confuse users

#43 code423n4 opened 3 years ago
0
Missing event in critical devMint() function

#42 code423n4 opened 3 years ago
0
ERC-721 Spec mismatch for ownerOf() function

#41 code423n4 opened 3 years ago
1
Missing error messages in require statements of various function

#40 code423n4 opened 3 years ago
0
Missing event in critical sealContract() function

#39 code423n4 opened 3 years ago
0
Missing event in critical pauseMarket() function

#38 code423n4 opened 3 years ago
0
Missing parameters in SalesBegin event of critical startSale() function

#37 code423n4 opened 3 years ago
0
No guarded launch circuit breaker for public sale

#36 code423n4 opened 3 years ago
1