Sparkn

CodeFox Inc.

DeFiFoundryProxy

15,000 USDC

View results

Previous Next

Submission Details

Severity: medium

Lack of checks in the constructor can lead to funds being stuck.

bronzepickaxe

Summary

FACTORY_ADDRESS == STADIUM_ADDRESS is not checked in the constructor function of Distributor.sol, which can lead to funds being stuck in the ProxyFactory.sol contract.

Vulnerability Details

In the constructor of Distributor.sol, the only thing being checked is this:

file: 2023-08-sparkn/src/Distributor.sol

constructor(

if (factoryAddress == address(0) || stadiumAddress == address(0)) revert Distributor__NoZeroAddress();

)

If both addresses are identical, every commissionFee will effectively be transferred to the FACTORY_ADDRESS.

However, the FACTORY_ADDRESS(ProxyFactory.sol) doesn't have a withdraw function. This leads to these funds being stuck in the FACTORY_ADRESS with no way of getting them out.

Impact

High

Tools Used

Manual Review

Recommendations

Add an extra check in the constructor of Distributor.sol:

file: 2023-08-sparkn/src/Distributor.sol

constructor(

if (factoryAddress == address(0) || stadiumAddress == address(0)) revert Distributor__NoZeroAddress();

)

+ if(factoryAddress == stadiumAddress) revert;

Prize pool breakdown

Total prize

15,000 USDC

nSLOC

194

77 USDC / LOC

High Medium

14,000 USDC

Low

1,000 USDC

Live

The contest is live. Earn rewards by submitting a finding.

Judging

Submissions are being carefully reviewed by our judges.

View all submissions

Appeals

This is your time to appeal against judgements on your submissions.

Appeals Review

Appeals are being carefully reviewed by our judges.

Rewards Distribution

The contest is complete and the rewards are being distributed.

View results

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.