GivingThanks

First Flight #28

Beginner FriendlyFoundry

100 EXP

Submission Details

Severity: low

Invalid

Potential for Unintended Admin Changes

Root Cause: The changeAdmin function lacks a check to prevent the new admin from being set to the zero address.
Impact: The contract could become irreversibly locked without an admin, preventing administrative functions from being executed.

Code Snippet:

function changeAdmin(address newAdmin) public {
require(msg.sender == admin, "Only admin can change admin");
admin = newAdmin;
}
- Issue: No validation of newAdmin.
- Consequence: Setting admin to address(0) could disable admin functionalities.

Add Validation for newAdmin:

require(newAdmin != address(0), "New admin cannot be zero address");
Consider Emitting an Event:
- Emit an event to log admin changes:
  
  event AdminChanged(address indexed previousAdmin, address indexed newAdmin);
  
  function changeAdmin(address newAdmin) public {
  require(msg.sender == admin, "Only admin can change admin");
  require(newAdmin != address(0), "New admin cannot be zero address");
  emit AdminChanged(admin, newAdmin);
  admin = newAdmin;
  }

Updates

n0kto Lead Judge 12 months ago

Submission Judgement Published

Invalidated

Reason: Non-acceptable severity

nSLOC

This contest has a flat reward structure with the following payouts:

High

100 EXP

Medium

20 EXP

Low

2 EXP

The contest is live. Earn rewards by submitting a finding.

Submissions are being carefully reviewed by our judges.

This is your time to appeal against judgements on your submissions.

Appeals are being carefully reviewed by our judges.

The contest is complete and the rewards are being distributed.

Support

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.