TokenFactory::deployToken
is creating new token by taking token symbol
and token contractByteCode
as argument, owner can create multiple token with same symbol
by mistake
deployToken
is not checking weather that token exists or not.
How it will work
Owner created a token with symbol TEST and it will store tokenAddress in s_tokenToAddress
mapping
Again owner created a token with symbol TEST and this will replace the previous tokenAddress with symbol TEST
Here is the PoC
To run test
If that token is being used in validation then all the token holders will lose funds
Manual review
Use checks to see, if that token exists in TokenFactory::deployToken
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.