Judge has assessed an item in Issue #18 as Medium risk. The relevant finding follows:
Controlled swapRouter
The FeeBurner contract sets the swapperRouter in the _addressProvider, so the owner can set any type of swapper, paths or pools, even malicious ones.
Since there is no slippage defined in the FeeBurner contract itself, it could be that a swapperRouter returns 0 WETH, and keeps the sent tokens.
GalloDaSballo
commented
2 years ago
Judge has assessed an item in Issue #18 as Medium risk. The relevant finding follows:
Controlled swapRouter The FeeBurner contract sets the swapperRouter in the _addressProvider, so the owner can set any type of swapper, paths or pools, even malicious ones. Since there is no slippage defined in the FeeBurner contract itself, it could be that a swapperRouter returns 0 WETH, and keeps the sent tokens.
Affected source code:
FeeBurner.sol#L73