No way to retrieve ETH from the contract #18
Labels
2 (Med Risk)
Assets not at direct risk, but function/availability of the protocol could be impacted or leak value
bot-report
bug
Something isn't working
ineligible for award
nullified
Issue is high quality, but not accepted
satisfactory
satisfies C4 submission criteria; eligible for awards
selected for report
This submission will be included/highlighted in the audit report
sponsor acknowledged
Technically the issue is correct, but we're not going to resolve it for XYZ reasons
Lines of code
L12, L13, L59, L60
Vulnerability details
The following contracts contain at least one
payable
function, yet the function does not utilise forwarded ETH, and the contract is missing functionality to withdraw ETH from the contract. This means that funds may become trapped in the contract indefinitely. Consider adding a withdraw/sweep function to contracts that are capable of receiving ether.Assessed type
other
The text was updated successfully, but these errors were encountered: