The buyPresent function currently allows any user to mint tokens for themselves without any restrictions. This is due to the lack of access control and the direct call to _mintAndIncrement() within the function.
This flaw could lead to significant issues in the token economy, such as token inflation or devaluation, as it permits unrestricted minting of new tokens by any user.
Restrict Access for Minting: Implement stringent access controls to prevent unauthorized token minting.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.