Open code423n4 opened 2 years ago
Declared event in WithdrawFacet.sol doesn't match emitted event
tchkvsky
Declared event in #L12 of WithdrawFacet.sol doesn't match emitted event (called parameters) in #L37
WithdrawFacet.sol
This could lead to logging incorrect transactions
WithdrawFacet.sol#L12
event LogWithdraw(address indexed _assetAddress, address _from, uint256 amount);
and
WithdrawFacet.sol#L37
emit LogWithdraw(sendTo, _assetAddress, _amount);
does not match
Manual review
Consider changing (#L12)
to
event LogWithdraw(address indexed _assetAddress, address _to, uint256 _amount);
AND (#L37)
emit LogWithdraw(_assetAddress, sendTo, _amount);
Useful links:
https://eips.ethereum.org/EIPS/eip-20#events
https://docs.soliditylang.org/en/v0.8.13/contracts.html#events
Declared event in WithdrawFacet.sol doesn't match emitted event
Handle
tchkvsky
Vulnerability details
Declared event in #L12 of
WithdrawFacet.soldoesn't match emitted event (called parameters) in #L37Impact
This could lead to logging incorrect transactions
Proof of Concept
WithdrawFacet.sol#L12and
WithdrawFacet.sol#L37does not match
Tools Used
Manual review
Recommendation
Consider changing (#L12)
to
AND (#L37)
to
Useful links:
https://eips.ethereum.org/EIPS/eip-20#events
https://docs.soliditylang.org/en/v0.8.13/contracts.html#events