Unsafe usage of `transferFrom` in `EthosReview.sol`

Summary

Some ERC20 tokens do not revert on failure but instead, return false if their transfer/transferFrom functions fail. In the case that a payment token returns false on failure, users may be able to add reviews without transferring tokens.

Root Cause

In _handlePayment transferFrom is used to receive payment tokens:

IERC20(paymentToken).transferFrom(msg.sender, address(this), price);

Internal pre-conditions

There is a mandatory payment fee when adding reviews

External pre-conditions

No response

Attack Path

A token that does not revert on failure is added as a payment token.
User adds a review using that token but their transfer fails.
Even though they didn't transfer the token they successfully added the review, avoiding the necessary payment.

Impact

Users may be able to add reviews for free.

PoC

No response

Mitigation

Consider using Openzeppelin's SafeERC20 to transfer ERC20 tokens.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

083.md

083.md

Unsafe usage of `transferFrom` in `EthosReview.sol`

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Files

083.md

Latest commit

History

083.md

File metadata and controls

Unsafe usage of transferFrom in EthosReview.sol

Summary

Root Cause

Internal pre-conditions

External pre-conditions

Attack Path

Impact

PoC

Mitigation

Unsafe usage of `transferFrom` in `EthosReview.sol`