The redeemMemorabilia
function calls
Likelihood:
Reason 1: If the BEAT token doesn't properly restrict burnFrom()
(e.g., using msg.sender
only), then any address can potentially trigger a burn from another user's balance.
Impact:
Impact 1: Unauthorized token burning, leading to DoS or stolen value.
Ensure burnFrom()
in BeatToken
strictly checks:
Or add approval mechanism before burn.
The contest is live. Earn rewards by submitting a finding.
This is your time to appeal against judgements on your submissions.
Appeals are being carefully reviewed by our judges.