Back to samruna's contests

Canto v2 contest - samruna's results

Execution layer for original work.

General Information

Platform: Code4rena

Start Date: 28/06/2022

Pot Size: $25,000 USDC

Total HM: 14

Participants: 50

Period: 4 days

Judge: GalloDaSballo

Total Solo HM: 7

Id: 141

League: ETH

Canto

Findings Distribution

Researcher Performance

Rank: 35/50

Findings: 1

Award: $43.47

🌟 Selected for report: 0

🚀 Solo Findings: 0

External Links

Code4rena Contest PageGithub Contest RepositoryGithub Findings RepositoryCanto

Findings Information

🌟 Selected for report: zzzitron

Also found by: 0v3rf10w, 0x1f8b, 0x29A, AlleyCat, Bnke0x0, Chom, Funen, JC, Lambda, Limbooo, Meera, Picodes, Sm4rty, TerrierLover, TomJ, __141345__, asutorufos, aysha, c3phas, cccz, defsec, fatherOfBlocks, grGred, hake, ignacio, ladboy233, mrpathfindr, oyc_109, rfa, sach1r0, samruna, slywaters, ynnad

Awards

43.4708 USDC - $43.47

Labels

bug
QA (Quality Assurance)

External Links

Link to GitHub issue

Lines of code

https://github.com/Plex-Engineer/manifest-v2/blob/f6ebfe679973edf4f64832e64480ff5250ef8486/contracts/Proposal-Store.sol#L42

Vulnerability details

Impact

The AddProposal() function does not check if the poposalID already exists or created. The function created Proposal object and tried to store in the mapping. Althouh mapping structure will overright with the new entry but this may not be necessary.

Add a check to see if proposalId already exists in the map before processing further in the AddProposal function.

#0 - rotcivegaf

2022-07-02T23:14:29Z

Duplicate of #108

#1 - nivasan1

2022-07-19T19:35:32Z

duplicate of #108

#2 - GalloDaSballo

2022-08-13T23:13:38Z

Dup of #108

AuditHub

A portfolio for auditors, a security profile for protocols, a hub for web3 security.

Built bymalatrax © 2024

Auditors

Browse

Contests

Browse

Get in touch

ContactTwitter