Closed sherlock-admin2 closed 5 months ago
kgothatso
high
TelcoinDistributor :: proposeTransaction
member can propose a transaction and approve it
loss of all funds
https://github.com/sherlock-audit/2024-01-telcoin/blob/main/telcoin-audit/contracts/protocol/core/TelcoinDistributor.sol#L87
https://github.com/sherlock-audit/2024-01-telcoin/blob/main/telcoin-audit/contracts/protocol/core/TelcoinDistributor.sol#L143
Manual Review
another person must approve the proposal
Invalid, insufficient proof, almost no details on impact and finding
kgothatso
high
TelcoinDistributor :: proposeTransaction
Council Member can steal all fundsSummary
member can propose a transaction and approve it
Vulnerability Detail
Impact
loss of all funds
Code Snippet
https://github.com/sherlock-audit/2024-01-telcoin/blob/main/telcoin-audit/contracts/protocol/core/TelcoinDistributor.sol#L87
https://github.com/sherlock-audit/2024-01-telcoin/blob/main/telcoin-audit/contracts/protocol/core/TelcoinDistributor.sol#L143
Tool used
Manual Review
Recommendation
another person must approve the proposal