b0g0_ctf - .call() in function withdraw(uint256) with whitespace payload #31
Labels
duplicate
This issue or pull request already exists
Comments
Viktor-Andreev4
changed the title
|
Valid! But another auditor submitted first -> #30 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Description of bug
The call function in the withdraw method includes a payload consisting of whitespace. This unintended whitespace can potentially lead to unexpected behavior during execution.
Impact
The inclusion of whitespace in the payload may cause unintended consequences or failures when interacting with the recipient's fallback function. This could result in improper handling of the Ether transfer and potentially lead to bugs or vulnerabilities.
Solution
Change
(bool success, ) = msg.sender.call{value: depositRequired}(" ");to(bool success, ) = msg.sender.call{value: depositRequired}("");The text was updated successfully, but these errors were encountered: