Upgraded Q -> M from 439 [1656339301187]

code-423n4 / 2022-05-rubicon-findings

5 stars 2 forks source link

Upgraded Q -> M from 439 [1656339301187] #495

Closed code423n4 closed 2 years ago

code423n4 commented 2 years ago

Judge has assessed an item in Issue #439 as Medium risk. The relevant finding follows:

HickupHH3 commented 2 years ago

In tailOff a strategist can choose any _stratUtil target. A malicious target can drain the tokens. Consider having a whitelist, at least temporary, and you can later disable it if everything goes smoothly.

dup of #211