Submission Details
Severity:
Unsafe `ERC20` Operations should not be used
Vulnerability Details
-
Found in src/RapBattle.sol Line: 46
oneShotNft.transferFrom(msg.sender, address(this), _tokenId); -
Found in src/RapBattle.sol Line: 47
credToken.transferFrom(msg.sender, address(this), _credBet); -
Found in src/RapBattle.sol Line: 72
credToken.transfer(_defender, defenderBet); -
Found in src/RapBattle.sol Line: 73
credToken.transferFrom(msg.sender, _defender, _credBet); -
Found in src/RapBattle.sol Line: 76
credToken.transfer(msg.sender, _credBet); -
Found in src/RapBattle.sol Line: 80
oneShotNft.transferFrom(address(this), _defender, defenderTokenId); -
Found in src/Streets.sol Line: 34
oneShotContract.transferFrom(msg.sender, address(this), tokenId); -
Found in src/Streets.sol Line: 80
oneShotContract.transferFrom(address(this), msg.sender, tokenId);
Recommendations
It is recommended to use OpenZeppelin's SafeERC20 library.
Rewards breakdown
nSLOC
201This contest has a flat reward structure with the following payouts:
100 EXP
20 EXP
2 EXP
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.