The executeDepawsit and executeWhiskdrawal functions do not validate the _user address, ensuring it's not the zero address.
Location: executeDepawsit and executeWhiskdrawal functions.
Description: These functions directly handle token transfers but do not validate the _user address to ensure it's not the zero address. This can lead to potential issues such as transferring tokens to an unintended address.
Severity: Medium
Effect: Transferring to an invalid address can result in lost tokens and reduce the system's resilience.
Manual code review
Add checks to ensure the _user address is not a zero address.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.