Wrong fee hardcoded in fee collector
Summary
There are a few fee types in the protocol, all of them hardcoded, but 2 of them are set to wrong values
Vulnerability Details
The protocol has a fee collector contract the is responsible for fee collection and distribution.
A function that sets different fee types is called (_initializeFeeTypes()) from the constructore in oreder to set the fee tpyes. All fees are in BPS. The problem is with the // Buy/Sell Swap Tax (2% total) and // NFT Royalty Fees (2% total) fees.
All fee types have commends on how much in percentage the fee is. In these two fee types the fees are set to 10 times more than anticipated.
For example the buy/sell swap tax is 2% total like:
However the percentages in the comments do not match the values in bps. For example burnShare is 500 BPS which is 500/10_000 = 1/20 or 5% . THis is 10 times more than 0.5 which is anticipated.
ALso there is no setter function to reset the fees
Impact
Low
Tools Used
Manual Review
Recommendations
Set the fees as follows:
Also adding a setter function would be best.
Lead Judging Commences
Fee shares for fee type 6 and 7 inside FeeCollector do not total up to the expected 10000 basis points, this leads to update problems, moreover they are 10x the specifications
Prize pool breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.