Closed code423n4 closed 2 years ago
pauliax
function creatorClaimSoldTokens should nullify depositTokenAmount, otherwise it may not be possible to recover deposit tokens later because the balance will be lower than accounted depositTokenAmount:
uint256 excess = ERC20(token).balanceOf(address(this)) - (depositTokenAmount - redeemedDepositTokens);
Possible solution (function creatorClaimSoldTokens):
uint112 amount = depositTokenAmount; depositTokenAmount = 0;
dupe of #121
Handle
pauliax
Vulnerability details
Impact
function creatorClaimSoldTokens should nullify depositTokenAmount, otherwise it may not be possible to recover deposit tokens later because the balance will be lower than accounted depositTokenAmount:
Recommended Mitigation Steps
Possible solution (function creatorClaimSoldTokens):