avatar

SlowMist Says ERC721R Sample Contract Flaw is Essentially Due to Excessive Owner Privileges

Core Go Pocket developer Ben said a flaw in the ERC721R sample contract could be exploited by the project to perform RugPull. According to the preliminary analysis of the SlowMist security team, this flaw is essentially due to the problem of excessive owner permissions. In the ERC721R example contract, the owner can arbitrarily set the NFT address returned by the user via the setRefundAddress function.
Source

Security Incidents

NFT

Related News
North Korean hackers use fake Zoom updates to deliver ‘NimDoor’ macOS malware targeting crypto firms North Korean hackers use fake Zoom updates to deliver ‘NimDoor’ macOS malware targeting crypto firms
Quantum Cats NFT floor price plunges 54% post-Taproot Wizards mint Quantum Cats NFT floor price plunges 54% post-Taproot Wizards mint
Blur’s decline fuels OpenSea’s market share surge amid broader NFT struggles Blur’s decline fuels OpenSea’s market share surge amid broader NFT struggles
Bybit hackers move over half the stolen ETH onto Bitcoin, largely using ThorChain Bybit hackers move over half the stolen ETH onto Bitcoin, largely using ThorChain
Stablecoin neobank Infini exploited for $49 million: security analysts Stablecoin neobank Infini exploited for $49 million: security analysts
Latest News More More
9 Hours Ago Tether plans further Bitcoin mining expansion in South America with Adecoagro tie up
1 Day Ago JPMorgan's blockchain unit tests new carbon credit tokenization application with S&P Global
4 Days Ago Ethereum community plans onchain ‘time capsule’ to mark 10th anniversary of network’s genesis block
June 25 Circle's post-IPO stock surge pushes market cap near Coinbase and USDC
June 20 Kraken offers bitcoin ‘staking’ yield via Babylon without wrapping or lending

About TokenInsight

Services

Products

Support

Google Play
Google Play
Google Play
2018 – 2023 © TokenInsight Ltd. All rights reserved
Disclaimer Terms of Service Privacy Policy
delate
Use TokenInsight App All Crypto Insights Are In Your Hands
Open