MrCrambo/TRON_Tronempire_report.md Secret

Created June 7, 2019 13:35

Star (0) You must be signed in to star a gist
Fork (1) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/MrCrambo/2f08b30a1107ca4122acc5700368b080.js"></script>
Save MrCrambo/2f08b30a1107ca4122acc5700368b080 to your computer and use it in GitHub Desktop.

Download ZIP

Raw

TRON_Tronempire_report.md

Summary

This is the report from a security audit performed on Tronempire by MrCrambo.

The audit focused primarily on the security of Tronempire smart contract.

In scope

https://troneye.com/reveal?address=TGik1iQSWYR1zGVsMgeBY95oUoPmNQjwr5

Findings

In total, 2 issues were reported including:

0 high severity issues.
1 medium severity issues.
0 owner privilegies issues.
1 low severity issues.

Security issues

1. Wrong payable function

Severity: medium

Description

If some investor will call payable function in line 42 he will lose his invested ethers, because it will be stored as zero address invested.

2. Zero address checking

Severity: low

Description

There are no zero address checking in constructor in line 28, deposit in line 46, createMagnat in line 154,

Conclusion

Smart contract contains medium severity issue.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment