the _minLockPeriod parameter are used for the lock time on the deposits and withdrawals. In the state variable , proper check up should be done , other wise error in these state variable can lead to redeployment of contract. The possible huge value will definitely lock the funds.
minLockPeriod does not have any validation. Also, the contract does not have any setter function. Misdeployment can cause huge problems on the deposit and withdrawals.
Handle
defsec
Vulnerability details
Impact
the _minLockPeriod parameter are used for the lock time on the deposits and withdrawals. In the state variable , proper check up should be done , other wise error in these state variable can lead to redeployment of contract. The possible huge value will definitely lock the funds.
Proof of Concept
Tools Used
Code Review
Recommended Mitigation Steps
Hardcode minLockPeriod on the contract.