Git-Mirrors/blockchains-security-toolkit
1
0
Fork 0
mirror of https://github.com/autistic-symposium/blockchains-security-toolkit.git synced 2025-05-18 14:40:23 -04:00
Code Issues Projects Releases Packages Wiki Activity

🍤 minor grammar

Browse source
This commit is contained in:
bt3gl 2022-09-21 18:33:15 -07:00 committed by GitHub
parent 23a187a49c
commit c3eecaed87
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
Top-Immunefi-Vulnerabilities/redacted-cartel.md
View file

@ -8,9 +8,9 @@
* The vulnerability was rated as critical because it would have allowed a malicious attacker to assign a users allowance to themselves, enabling the attacker to steal that users funds.
* The purpose of ERC-20s `approve(spender, amount)` function is to allow any address to spend the tokens on behalf of the tokens owner.
* The purpose of ERC20s `approve(spender, amount)` function is to allow any address to spend the tokens on behalf of the tokens owner.
* The vulnerability here consisted of a faulty implementation of standard ERC-20 functions in REDACTEDs wxBTRFLY token, which is a wrapped version of the xBTRFLY.
* The vulnerability here consisted of a faulty implementation of standard ERC20 functions in REDACTEDs wxBTRFLY token, which is a wrapped version of the xBTRFLY.
### Vulnerability
@ -42,7 +42,7 @@ where `allowance(sender, recipient)` should be `allowance(sender, msg.sender)`.
<br>
[Here](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/ERC20.sol) is how OpenZeppelin implements this function for `ERC-20`:
[Here](https://github.com/OpenZeppelin/openzeppelin-contracts/blob/master/contracts/token/ERC20/ERC20.sol) is how OpenZeppelin implements this function for `ERC20`:
```
function transferFrom(