Closed code423n4 closed 1 year ago
Missing proof, this doesn't meet the basics for a High Severity report, please always add a POC to your reports no matter how trivial they may look to you
GalloDaSballo marked the issue as unsatisfactory: Insufficient proof
Lines of code
https://github.com/code-423n4/2023-01-drips/blob/main/src/Drips.sol#L823
Vulnerability details
Impact
Shift operators (shl(x, y), shr(x, y), sar(x, y)) in Solidity assembly apply the shift operation of x bits on y and not the other way around, which may be confusing. Check if the values in a shift operation are reversed.
Proof of Concept
Tools Used
VS Code
Recommended Mitigation Steps
Swap the order of parameters.