ContestManager::fundContest
takes index of the contest as input , but there is no way to determine the index of a contest as ContestManager::createContest
returns address of the contest , making it difficult to fund a contest
ContestManager::fundContest
is to be called after creating a contest . The contest is created by ContestManager::createContest
, but this returns the address instead of the index of the contest. Also , there is no other method to get the index of a contest if we know the address of a contest. So , the owner may mistakenly fund a contract they don't want to . Basically using index as param causes difficulties in funding contests.
Owner finds it difficult to fund the intended contest
Manual Review
There are 2 mitigations to this:
Use address of contest as param as input in fundContest
instead of the index.
Make a function which takes in the address of a contest , loops through the contests
array to find the index. But all this is just extra useless stuff , and this isn't recommended. Also if the array becomes really large then this'll be a DoS attack .
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.