The setPassword() function is callable by regular user.Sensitive function to update password should be protected by modifiers e.g onlyOwner()
function setPassword(string memory newPassword) external {
s_password = newPassword;
emit SetNetPassword();
}
password gets changed
manual audit
use modifiers like onlyOwner() or consider other access control mechanism.
Anyone can call `setPassword` and set a new password contrary to the intended purpose.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.