HACKBOOK OF A HACKER

README
Ctf Writeups
Smart Contracts Security
- Code 4 Rena
  High Risk Findings
  Anyone Can Pass Any Proposal
  Arithmetic Rounding
  Can Vote Multiple Times By Transferring NFT In Same Block As Proposal
  Never Ending Proposal
  Reusing Signatures
  Signature Verification Can Be Bypass With Zero Address
  Untyped Data Signing
  Wrong Calculation Of Apr
  Low Risk Non Critical
  Dont Check If Some Entity Actually Exists
  Medium Risk Findings
  Bypass Signature Validity Check
  Copy Of Lack Of Verification In Hashes
  Function May Run Out Of Gas Leading To Loss
  Incorrect Initialization Of Smart Contracts With Access Control Issue
  Invalid Signature Lead To Access Control
  Lack Of Checks If One Entity Get Hacked
  Lack Of Verification In Hashes
  Missing Upper Limit
  Missing Zero Address Checks
  Possible Dos Because Unbounded Loop Can Run Out Of Gas
  Too Much Trust To Certain Roles
  Unreversable Actions
  Useless Nft
T.I.L.
- 16 09 22

Powered by GitBook

Medium Risk Findings

PreviousDont Check If Some Entity Actually Exists NextBypass Signature Validity Check

Last updated 5 months ago

On this page

Was this helpful?