Sparkn

CodeFox Inc.

DeFiFoundryProxy

15,000 USDC

Submission Details

Severity: medium

Sponsor money could be locked in the contract and not go to the winner

Let's imagine the following scenario:

If the sponsor is ready to give money and does not know that the competition is over, but the organizer starts to send rewards to the winner and front-run, then the sponsor’s money will be locked in the contract;
The second situation is that in the case of network congestion, the sponsor is going to give money, and then the organizer is going to end the game, but the request to end the game is processed first due to network congestion. Similarly, the sponsor’s money will be locked in a contract;

https://github.com/Cyfrin/2023-08-sparkn/blob/main/src/ProxyFactory.sol#L127

Sponsor money could be locked in the contract and not go to the winner

manual

We can add a function to process the remaining tokens in the contract after the game is over and the rewards are distributed

Total prize

15,000 USDC

nSLOC

194

77 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

The contest is live. Earn rewards by submitting a finding.

Submissions are being carefully reviewed by our judges.

This is your time to appeal against judgements on your submissions.

Appeals are being carefully reviewed by our judges.

The contest is complete and the rewards are being distributed.

Support

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.