First Flight #12: Kitty Connect

First Flight #12: Kitty Connect
Beginner FriendlyFoundryNFTGameFi
100 EXP
View results
Submission Details
Severity: low
Invalid

Constructor missing zero address check for "i_kittyConnectOwner"

Summary

Constructor missing zero address check for "i_kittyConnectOwner" inside of "KittyConnect.sol".

Vulnerability Details

The missing zero address check is present, which means can instantiate the contract without specifying address and will lose ownership of the contract.

Impact

High, since owner will lose ownership of the contract, but likelihood of that happening is minimum, cause everyone watches what he deploys usually.

Tools Used

Manual review.

Recommendations

Have a code piece inside of the contract initialization similar to:

require(msg.sender != address(0), "Address 0 not allowed!");
Updates

Lead Judging Commences

inallhonesty Lead Judge about 1 year ago
Submission Judgement Published
Invalidated
Reason: Non-acceptable severity
hashov Submitter
about 1 year ago

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.