issues
search
code-423n4
/
2022-08-foundation-findings
0
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Add to BlackList function
#260
code423n4
closed
1 year ago
2
Creator can be incorrectly paid because of array truncate when distributing mint fee.
#259
code423n4
closed
1 year ago
2
Bad access control in AdminRole.sol can lead to griefing DoS by front-running when trying to withdraw treasury funds
#258
code423n4
closed
1 year ago
2
QA Report
#257
code423n4
opened
1 year ago
1
Gas Optimizations
#256
code423n4
opened
1 year ago
1
Gas Optimizations
#255
code423n4
opened
1 year ago
1
Malicious creator can update maxTokenId by calling updateMaxTokenId after minting begins to block further minting for an NFT drop collection
#254
code423n4
closed
1 year ago
3
QA Report
#253
code423n4
opened
1 year ago
1
Bad access control in MinterRole.sol can let anyone mint all remaining possible NFTs in NFTDropCollection.sol
#252
code423n4
closed
1 year ago
1
QA Report
#251
code423n4
opened
1 year ago
1
Gas Optimizations
#250
code423n4
opened
1 year ago
1
QA Report
#249
code423n4
opened
1 year ago
1
Execution is transferred to untrusted address factories from privileged context
#248
code423n4
closed
1 year ago
2
User can steal the referral fee when minting systematically at the cost of nft creator and project.
#247
code423n4
opened
1 year ago
3
Gas Optimizations
#246
code423n4
opened
1 year ago
1
Gas Optimizations
#245
code423n4
opened
1 year ago
1
Smart contract callers can bypass account limits and exploit referral fees
#244
code423n4
closed
1 year ago
2
Bad access control in AdminRole.sol can lead to all funds being stolen from FoundationTreasury.sol
#243
code423n4
closed
1 year ago
2
Gas Optimizations
#242
code423n4
opened
1 year ago
1
ETH distribution in NFTDropMarket.mintFromFixedPriceSale() is not secure, given that malicious NFTs can be added and there is no reentrancy protection.
#241
code423n4
closed
1 year ago
2
saleConfig.limitPerAccount can be bypassed if user buy nft and transfer nft to another wallet.
#240
code423n4
closed
1 year ago
2
QA Report
#239
code423n4
opened
1 year ago
1
Design Consideration: snipor bot can view the on-chain nft metadata and see the rare one and snipe the rare NFT at user's cost.
#238
code423n4
closed
1 year ago
2
NFTDropMarket.sol accept any NFT contracts for sales, take money from buyers, but don't check NFTs were minted
#237
code423n4
closed
1 year ago
2
Minter or Creator can NFT for free as the cost of the user.
#236
code423n4
closed
1 year ago
2
NFT Creator can rug the project by calling self destruct on NFT
#235
code423n4
closed
1 year ago
1
QA Report
#234
code423n4
opened
1 year ago
1
Gas Optimizations
#233
code423n4
opened
1 year ago
1
Revenue split inconsistency in `_getFees`
#232
code423n4
opened
1 year ago
3
If optional approvedMinter argument isn't included when drop is created, creating listings in the market will fail
#231
code423n4
closed
1 year ago
1
`saleConfig.limitPerAccount` can be overriden
#230
code423n4
closed
1 year ago
2
TEST SUBMISSION
#229
code423n4
closed
1 year ago
1
Gas Optimizations
#228
code423n4
closed
1 year ago
1
QA Report
#227
code423n4
closed
1 year ago
2
Gas Optimizations
#226
code423n4
opened
1 year ago
1
QA Report
#225
code423n4
opened
1 year ago
1
QA Report
#224
code423n4
opened
1 year ago
1
Gas Optimizations
#223
code423n4
closed
1 year ago
1
QA Report
#222
code423n4
opened
1 year ago
1
Gas Optimizations
#221
code423n4
closed
1 year ago
2
users could not mint if they achieve the `limitPerAccount` by shopping in the secondary market
#220
code423n4
closed
1 year ago
3
QA Report
#219
code423n4
opened
1 year ago
1
users could mint NFTs for free
#218
code423n4
closed
1 year ago
2
`createNFTDropCollectionWithPaymentAddress()` doesn't granting the `creator` to receive royalties and mint payments
#217
code423n4
closed
1 year ago
2
mint and approve functions are prone to Phishing attacks leading to creator/owner losing funds/nft
#216
code423n4
closed
1 year ago
4
QA Report
#215
code423n4
closed
1 year ago
2
QA Report
#214
code423n4
opened
1 year ago
1
`_safeMint()` should be used rather than `_mint()`, or NFTs may be lost
#213
code423n4
closed
1 year ago
2
QA Report
#212
code423n4
opened
1 year ago
1
Malicious Creator can steal from collectors upon minting with a custom NFT contract
#211
code423n4
opened
1 year ago
2
Previous
Next