This is the report from a security audit performed on 0xBTC by MrCrambo.
The audit focused primarily on the security of 0xBTC smart contracts.
In total, 2 issue were reported including:
-
0 high severity issues.
-
0 medium severity issues.
-
2 low severity issues.
In functions transfer and transferFrom there are no zero address checking. Because of this also totalSupply function will return wrong value with subtracting of zero address balance, where could be tokens losed by users.
Add zero address checking
require(to != address(0));
- It is possible to double withdrawal attack. More details here
- Lack of transaction handling mechanism issue. More details here
Smart contract has only low severity issues.