0xKiwi
commented
2 years ago We sometimes use different paths based on the token. Acknowledging.
Open code423n4 opened 2 years ago
0xKiwi
commented
2 years ago We sometimes use different paths based on the token. Acknowledging.
Handle
cmichel
Vulnerability details
The
NFTXMarketPlaceZapcontract allows the user to provide an arbitrarypatharray that is used to swap, see for examplebuyAndSwap721WETH. This path may not be fully arbitrary though, the initial token (path[0]) should be WETH and the terminal token (path[path.length - 1]) should be the vault token.Recommended Mitigation Steps
Consider verifying the path ends to fail early (instead of at some point when trying to mint/swap at the vault) and provide better error messages.