Dai Token security audit report
Audit Top 200 CoinMarketCap tokens. Dai (DAI) stablecoin.
In total, 4 issues were reported including:
0 high severity issue.
0 medium severity issues.
3 low severity issues.
1 owner privileges.
1. Known vulnerabilities of ERC-20 token
It is possible to double withdrawal attack. More details here
Add into a function
transfer(address _to, ... ) following code:
require( _to != address(this) );
2. Blocking transfering
Severity: owner privileges
The contract owner allowed to block transfer functions(
- Line 234.
3. ERC20 Compliance — event missing
According to ERC20 standard when coins are minted(or burned) a
Transfer event should be emitted.
- Lines 423, 428, 303.
4. Checking input addresses
Incoming addresses should be checked for an empty value(
0x0 address) to avoid loss of funds or blocking some functionality.
- Lines 133, 424, 400.
There are no dangerous vulnerabilities were discovered here.