issues
search
code-423n4
/
2024-02-renft-mitigation-findings
0
stars
0
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
ERC-1155 rentals can be stolen
#68
c4-bot-6
closed
7 months ago
2
Low / QA Issues
#67
c4-bot-8
opened
7 months ago
3
M-16 Unmitigated
#66
c4-bot-5
closed
7 months ago
4
M-13 MitigationConfirmed
#65
c4-bot-4
opened
7 months ago
3
M-12 MitigationConfirmed
#64
c4-bot-10
opened
7 months ago
2
M-16 MitigationConfirmed
#63
c4-bot-8
closed
7 months ago
1
M-11 MitigationConfirmed
#62
c4-bot-5
opened
7 months ago
1
[M-10] mitigation error
#61
c4-bot-10
opened
7 months ago
4
M-13 MitigationConfirmed
#60
c4-bot-4
opened
7 months ago
3
M-12 MitigationConfirmed
#59
c4-bot-5
opened
7 months ago
1
M-11 MitigationConfirmed
#58
c4-bot-9
opened
7 months ago
1
M-10 MitigationConfirmed
#57
c4-bot-5
closed
7 months ago
1
M-09 MitigationConfirmed
#56
c4-bot-10
opened
7 months ago
1
M-08 MitigationConfirmed
#55
c4-bot-10
opened
7 months ago
1
M-09 MitigationConfirmed
#54
c4-bot-8
opened
7 months ago
2
M-08 MitigationConfirmed
#53
c4-bot-1
opened
7 months ago
2
M-06 MitigationConfirmed
#52
c4-bot-3
opened
7 months ago
1
M-05 MitigationConfirmed
#51
c4-bot-10
opened
7 months ago
2
M-04 Unmitigated
#50
c4-bot-1
closed
7 months ago
7
M-02 MitigationConfirmed
#49
c4-bot-2
opened
7 months ago
5
M-01 MitigationConfirmed
#48
c4-bot-5
opened
7 months ago
1
H-07 MitigationConfirmed
#47
c4-bot-1
opened
7 months ago
1
H-06 MitigationConfirmed
#46
c4-bot-8
opened
7 months ago
1
H-05 MitigationConfirmed
#45
c4-bot-1
opened
7 months ago
2
H-04 MitigationConfirmed
#44
c4-bot-9
opened
7 months ago
1
H-03 MitigationConfirmed
#43
c4-bot-8
opened
7 months ago
2
H-02 MitigationConfirmed
#42
c4-bot-8
opened
7 months ago
2
H-01 MitigationConfirmed
#41
c4-bot-8
opened
7 months ago
1
M-06 MitigationConfirmed
#40
c4-bot-1
opened
7 months ago
1
M-05 MitigationConfirmed
#39
c4-bot-4
opened
7 months ago
1
M-04 MitigationConfirmed
#38
c4-bot-4
opened
7 months ago
1
M-01 MitigationConfirmed
#37
c4-bot-10
opened
7 months ago
1
H-07 MitigationConfirmed
#36
c4-bot-2
opened
7 months ago
1
H-06 MitigationConfirmed
#35
c4-bot-7
opened
7 months ago
1
H-05 MitigationConfirmed
#34
c4-bot-9
opened
7 months ago
1
H-04 MitigationConfirmed
#33
c4-bot-8
opened
7 months ago
1
H-03 MitigationConfirmed
#32
c4-bot-8
opened
7 months ago
1
H-02 MitigationConfirmed
#31
c4-bot-8
opened
7 months ago
1
H-01 MitigationConfirmed
#30
c4-bot-7
opened
7 months ago
1
An attacker can flash steal rented NFTs by bypassing `_executionInvariantChecks()` checks.
#29
c4-bot-2
opened
7 months ago
5
An attacker can hijack rentals indefinitely because no validation exists on the consideration item array size, allowing for DoS exploitation via the tipping feature
#28
c4-bot-9
opened
7 months ago
8
An attacker is able to hijack any rented ERC1155 tokens and brick rentals involving ERC1155 tokens
#27
c4-bot-2
opened
7 months ago
5
M-02 Unmitigated
#26
c4-bot-3
opened
7 months ago
5
All orders can be hijacked to lock rental assets forever by tipping a huge amount of small ERC20 tips
#25
c4-bot-3
closed
7 months ago
3
The `onStop` hook can be abused to create rental orders that can't be stopped, leading to locked assets
#24
c4-bot-4
closed
7 months ago
5
Approved ERC1155 tokens from other accounts can't be spent by the rental wallet due to missing `from` check
#23
c4-bot-7
closed
7 months ago
5
Critical user-facing policies like `Create` and `Stop` can't be really deactivated
#22
c4-bot-9
closed
7 months ago
3
Fallback handler can't validate signatures with approved hashes
#21
c4-bot-5
closed
7 months ago
4
m-16 Unmitigated
#20
c4-bot-8
opened
7 months ago
4
m-13 MitigationConfirmed
#19
c4-bot-9
opened
7 months ago
2
Next