Early Adopters will get fewer token WRT to Late Adopters
Summary
The 'mintSoulmateToken()' function in the smart contract is vulnerable due to the lack of fairness in token distribution, favoring users who come later. This is because the token minted to a user depends on the value of the 'nextID' variable, potentially resulting in early users receiving fewer tokens compared to later users.
Vulnerability Details
The vulnerability stems from the direct correlation between the value of the 'nextID' variable and the number of tokens minted to users. As 'nextID' increases with each minting operation, users who join the system later receive more tokens than those who joined earlier. This unfair distribution mechanism undermines the integrity and equality of token issuance within the contract.
Impact
Early adopters or participants receive fewer tokens, potentially leading to dissatisfaction, decreased participation, and loss of trust in the system. Additionally, it could create an imbalance in the ecosystem, favoring latecomers over early supporters.
Tools Used
Manual
Recommendations
It is recommended to have a fixed adjusted token allocation, instead of tying token issuance directly to the value of 'nextID'.
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.