Add SB Curated (copied from the smartbugs repository).
This commit is contained in:
Joao F. Ferreira
42
dataset/access_control/wallet_04_confused_sign.sol
Normal file
42
dataset/access_control/wallet_04_confused_sign.sol
Normal file
@@ -0,0 +1,42 @@
|
||||
/*
|
||||
* @source: https://smartcontractsecurity.github.io/SWC-registry/docs/SWC-105#wallet-04-confused-signsol
|
||||
* @author: -
|
||||
* @vulnerable_at_lines: 30
|
||||
*/
|
||||
|
||||
pragma solidity ^0.4.24;
|
||||
|
||||
/* User can add pay in and withdraw Ether.
|
||||
Unfortunatelty, the developer was drunk and used the wrong comparison operator in "withdraw()"
|
||||
Anybody can withdraw arbitrary amounts of Ether :()
|
||||
*/
|
||||
|
||||
contract Wallet {
|
||||
address creator;
|
||||
|
||||
mapping(address => uint256) balances;
|
||||
|
||||
constructor() public {
|
||||
creator = msg.sender;
|
||||
}
|
||||
|
||||
function deposit() public payable {
|
||||
assert(balances[msg.sender] + msg.value > balances[msg.sender]);
|
||||
balances[msg.sender] += msg.value;
|
||||
}
|
||||
|
||||
function withdraw(uint256 amount) public {
|
||||
// <yes> <report> ACCESS_CONTROL
|
||||
require(amount >= balances[msg.sender]);
|
||||
msg.sender.transfer(amount);
|
||||
balances[msg.sender] -= amount;
|
||||
}
|
||||
|
||||
// In an emergency the owner can migrate allfunds to a different address.
|
||||
|
||||
function migrateTo(address to) public {
|
||||
require(creator == msg.sender);
|
||||
to.transfer(this.balance);
|
||||
}
|
||||
|
||||
}
|
||||
Reference in New Issue
Block a user