Return values of `transfer()`/`transferFrom()` not checked
Summary
Not all IERC20 implementations revert() when there's a failure in transfer()/transferFrom()
Vulnerability Details
Not all IERC20 implementations revert() when there's a failure in transfer()/transferFrom(). The function returns a bool value that indicate errors. By not checking the return value, operations that should have failed, may potentially go through without actually making a payment
https://github.com/Cyfrin/2023-07-beedle/blob/main/src/Fees.sol#
https://github.com/Cyfrin/2023-07-beedle/blob/main/src/Lender.sol
https://github.com/Cyfrin/2023-07-beedle/blob/main/src/Staking.sol
Impact
Low
Tools Used
Manual review
Recommendations
Check for bool return value
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.