avatar

SlowMist Says ERC721R Sample Contract Flaw is Essentially Due to Excessive Owner Privileges

Core Go Pocket developer Ben said a flaw in the ERC721R sample contract could be exploited by the project to perform RugPull. According to the preliminary analysis of the SlowMist security team, this flaw is essentially due to the problem of excessive owner permissions. In the ERC721R example contract, the owner can arbitrarily set the NFT address returned by the user via the setRefundAddress function.
Source

Security Incidents

NFT

Related News
Trump’s fourth NFT collection logs sales over $2 million, not tradable on secondary markets until 2025 Trump’s fourth NFT collection logs sales over $2 million, not tradable on secondary markets until 2025
Trump Says He’ll Release Fourth NFT Collection: 'The People Want Me to Do Another One' Trump Says He’ll Release Fourth NFT Collection: 'The People Want Me to Do Another One'
NFT sales fell 44% as crypto dipped, memecoins steal ‘mind share’ in Q2 NFT sales fell 44% as crypto dipped, memecoins steal ‘mind share’ in Q2
Enforcement of South Korean virtual assets law prescribed in decree Enforcement of South Korean virtual assets law prescribed in decree
Lending Protocol Sonne Finance Exploited for $20M Lending Protocol Sonne Finance Exploited for $20M
Latest News More More
2 Days Ago Mantra and Damac sign $1B deal to tokenize Middle Eastern assets
2 Days Ago Fetch.ai launches $10M accelerator for AI agent startups
3 Days Ago Fidelity’s spot bitcoin, ether ETFs post largest daily net outflows since inception
3 Days Ago Polkadot-based Phala Network launches Ethereum Layer 2 rollup
4 Days Ago Coinbase premium flips positive for first time in weeks, indicating rising bitcoin demand from US investors

About TokenInsight

Services

Products

Support

Google Play
Google Play
Google Play
2018 – 2023 © TokenInsight Ltd. All rights reserved
Disclaimer Terms of Service Privacy Policy
delate
Use TokenInsight App All Crypto Insights Are In Your Hands
Open