EN
Degen.Money被曝存在双重授权漏洞,用户资金面临被窃取风险
Collect
Share
WeChat
Share With Friends Or Circle Of Friends
PANews 8
月
28
日消息,推特上有网友发推文称,流动性挖矿项目
Degen.Money
的参与者面临着双重授权漏洞窃取用户资金的风险。第一次授权是针对质押合约,第二次授权针对转账权,会导致资金被攻击者提取。
对此,
YFI
创始人
Andre Cronje
也表示,这个风险确实存在,平台通过
transferFrom
函数取走用户资金,用户请求把资金从合约中撤出并不能够解决问题,是需要自己手动操作取消授权。
Disclaimer: The copyright of this article belongs to the original author and does not represent MyToken(www.mytokencap.com)Opinions and positions; please contact us if you have questions about content
About MyToken:https://www.mytokencap.com/aboutusLink to this article:https://www.mytokencap.com/news/157132.html
Previous:数据:比特币锚定币总发行量超5万枚,三个月增长近8.7倍
Related Reading
Emma Liu on Pentagon Games: Redefining Web3 Gaming and Immersive Virtual Spaces
Emma Liu, CEO of Pentagon Games, shares insights on Web3 gaming, AR/VR integration, and creating imm...
The 5 Top New Meme Coins to Invest in This Month For Amazing ROI
Explore the 5 best meme coins to invest in this month, including BTFD Coin, for high ROI, innovative...
Mind AI Partners with VanarChain: Carbon-Neutral Tools for the Web3 Revolution
Mind AI, a platform that uses artificial intelligence to deliver trading information, has partnered ...