Protcol does not check in butPresent fucntion for address(0) check if it occurs revert
Likelihood:
Medium, anyone can call this function but small amount of users will call it with address(0) to check for exploit
Impact:
Low, doest nothing expect burn address0 funds
We can call this function with address0 as a parameter of presentReveiver this will lead to mint nft for msg.sender but this vurneblitiy was reporpted by me before.
The contest is live. Earn rewards by submitting a finding.
Submissions are being reviewed by our AI judge. Results will be available in a few minutes.
View all submissionsThe contest is complete and the rewards are being distributed.