Platform: Code4rena
Start Date: 24/03/2022
Pot Size: $75,000 USDC
Total HM: 15
Participants: 59
Period: 7 days
Judge: gzeon
Id: 103
League: ETH
Rank: 52/59
Findings: 1
Award: $113.58
🌟 Selected for report: 0
🚀 Solo Findings: 0
🌟 Selected for report: hake
Also found by: 0v3rf10w, 0xDjango, 0xkatana, BouSalman, CertoraInc, Dravee, Hawkeye, IllIllI, JMukesh, Jujic, Kenshin, PPrieditis, Picodes, PranavG, Ruhum, SolidityScan, VAD37, WatchPug, aga7hokakological, catchup, csanuragjain, cthulhu_cult, defsec, dimitri, hickuphh3, hubble, hyh, kenta, kirk-baird, obront, peritoflores, rayn, robee, saian, samruna, shenwilly, shw, sorrynotsorry, tchkvsky, teryanarmen, ych18
113.5781 USDC - $113.58
Explicit Compiler Version Not Stated
Low
An outdated version of Solidity containing known vulnerabilities could be used to compile the smart contract:
Remove the caret from the pragma directive.
Vulnerable "transfer()" Function in Use
Low
The WithdrawFacet.sol contract is using transfer() which is considered insecure as this function has a fixed gas price.
Use call() alongside ReentrancyGuard rather than the transfer() function.
#0 - H3xept
2022-04-04T08:29:04Z