Eggstravaganza
First Flight #37
Beginner FriendlySolidity
100 EXP
View results
Previous Next
Submission Details
Severity: high
Invalid

Unsafe Withdraw Transfer Syntax in the Vault

0xshaedyw

Summary

Uses transferFrom instead of safeTransferFrom in withdrawals.

Vulnerability Details

  • Issue:

    • NFTs sent to non-ERC721 compliant contracts get locked

    • Affects multisigs and some smart wallets

  • Example:

    • Withdrawing to Gnosis Safe without ERC721 support

Impact

Irreversible NFT loss

Tools Used

  • Manual inspection

Recommendations

eggNFT.safeTransferFrom(address(this), msg.sender, tokenId);
Updates

Lead Judging Commences

m3dython Lead Judge 3 months ago
Submission Judgement Published
Invalidated
Reason: Lack of quality

Support

FAQs

Can't find an answer? Chat with us on Discord, Twitter or Linkedin.