Unsafe `ERC721::_mint()` Usage
Summary
Unsafe ERC721::_mint() Usage
Vulnerability Details
The EggstravaganzaNFT contract uses ERC721::_mint() to mint NFTs, which does not check if the recipient address can safely receive ERC721 tokens. This can lead to tokens being minted to incompatible addresses, such as contracts that do not implement the ERC721 receiver interface (IERC721Receiver), potentially locking the tokens.
Impact
If an NFT is minted to an address (e.g., a smart contract) that does not support ERC721 tokens, the token could become permanently inaccessible, as the recipient cannot interact with it. This could result in lost assets for players in the EggHuntGame.
Proof of Concepts
-
Deploy
EggstravaganzaNFTand set a validgameContract. -
Call
mintEggwith to set to a contract address that does not implementIERC721Receiver.onERC721Received. -
The NFT is minted and transferred, but the recipient contract cannot manage it, effectively locking the token.
Tools Used
Manual review
Aderyn static analyzer
Recommendations
Replace _mint(to, tokenId) with _safeMint(to, tokenId) from OpenZeppelin’s ERC721 implementation. _safeMint ensures the recipient is either an externally owned account (EOA) or a contract that implements IERC721Receiver, preventing tokens from being sent to incompatible addresses.
Lead Judging Commences
Unsafe ERC721 Minting
Protocol doesn't check if recipient contracts can handle ERC721 tokens
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.