MorpheusAI

MorpheusAI
Foundry
22,500 USDC
View results
Submission Details
Severity: medium
Invalid

Token amount manipulation can affect protocol

Summary

Number of tokens held by contract address can easily be manipulated/increased , but that's still not the problem . What's more concerning here is use of balanceOf(address(this)) to calculate the total number of tokens held by contract . If Attacker sends extra tokens to this contract address , expected number of tokens will be different from actual number of tokens

Impact

Medium

Tools Used

Foundry , remix

Recommendations

A variable should be used , to track the count of token amount.

Updates

Lead Judging Commences

inallhonesty Lead Judge over 1 year ago
Submission Judgement Published
Invalidated
Reason: Incorrect statement

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.