Review Count Limit Not Enforced Due to Missing Increment
Summary
The giveReview function intends to limit students to 5 reviews but does not increment reviewCount, allowing unlimited reviews.
Vulnerability Details
The require(reviewCount[_student] < 5, ...) check always passes because reviewCount is never updated. Teachers can bypass the intended limit by waiting the reviewTime, affecting score fairness.
Impact
Unlimited negative reviews can unfairly reduce student scores below the cutOffScore, preventing graduation despite paying fees.
Tools Used
Recommendations
Increment reviewCount[_student] within giveReview after each review to enforce the 5-review limit.
Lead Judging Commences
reviewCount not updated
`reviewCount` for students is not updated after each review session
reviewCount not updated
`reviewCount` for students is not updated after each review session
Rewards breakdown
Live
The contest is live. Earn rewards by submitting a finding.
Appeals
This is your time to appeal against judgements on your submissions.
Appeals Review
Appeals are being carefully reviewed by our judges.