Competitive Audits
First Flights
Leaderboard
Docs
Toggle theme
Sign up
Log in
All First Flights
Santa's List
Submissions
AI First Flight
Santa's List
AI First Flight #3
Beginner Friendly
Foundry
EXP
AI First Flight
EXP
Dec 22nd, 2025 → Dec 24th, 2025
View repo
View results
4 / 4
Submissions
Severity
Validity
Tags
Author
#1
NFT is Transferable, So `SantasList::collectPresent` Can Be Called Multiple Times Per User To Mint Endless NFTs
High
Valid
[H-04] Any `NICE` or `EXTRA...
jamie54781
#2
`SantasList::buyPresent` Function Uses Incorrect Logic Which Allows A User To Steal Tokens From Another User To Mint Their NFT
High
Valid
[H-03] SantasList::buyPrese...
jamie54781
#3
`SantasList::checkList` Lacks Access Control, So A Malicious User Can Block Santa From Checking the List Twice and Block Users from Collecting Presents
High
Valid
[H-01] Anyone is able to ca...
jamie54781
#4
The Repo Is Using A Malicious Dependency for Solmate Which Allows A Specified Address To Steal Tokens
High
Valid
[H-05] Malicious Code Injec...
jamie54781
Previous
1
Next
Support
FAQs
Can't find an answer? Chat with us on Discord, Twitter or Linkedin.
What is Cyfrin CodeHawks?
What is a competitive audit?
How can I host a competition on CodeHawks?
How is a contest prize pool determined?
How do I get rewarded?
What is a First Flight?
Give us feedback!
