Prevent users sending unexpected ETH to protocol #640
Labels
bug
Something isn't working
duplicate
This issue or pull request already exists
old-submission-method
QA (Quality Assurance)
Assets are not at risk. State handling, function incorrect as to spec, issues with clarity, syntax
Lines of code
https://github.com/code-423n4/2022-07-golom/blob/main/contracts/core/GolomTrader.sol#L459-L461
Vulnerability details
Impact
The protocol receives ETH by defining
receive()
andfallback()
functions. Users will lose ETH when he/she accidentally sends ETH to the protocol.Proof of Concept
https://github.com/code-423n4/2022-07-golom/blob/main/contracts/core/GolomTrader.sol#L459-L461
Tools Used
None
Recommended Mitigation Steps
The text was updated successfully, but these errors were encountered: