CryptoAds audit report.
This is the report from a security audit performed on CryptoAds by MrCrambo.
The audit focused primarily on the security of CryptoAds smart contract.
In total, ** 5 issues** were reported including:
-
0 high severity issues.
-
3 medium severity issues.
-
0 low severity issues.
-
2 minor remark.
Owner address may be sent to zero address at function setOwner and because of it owner will lose his access to smart contract.
Need to check if _newOwner is not zero address.
require(_newOwner != address(0));Tokens could be sent to zero address, that means they will be locked and will not be able to use or burn. Functions transfer and transferFrom.
Need to check if _to address is not zero address.
require(_to != address(0));In case the user wants to change the approved amount an double-spend attack is possible.
Can be reviewed here.
In approve, transfer and transferFrom functions better to use super.'your function name' for better understanding of the code.
Use super.'your function name' for better understanding of the code.
You used few times solidity version declaration. Better to declare it one time at the beginning. Lines 1, 7, 14, 109,
Use just one declaration of solidity version at the beginning of smart contract.
No critical vulnerabilities were detected,but we highly recommend to complete other bugs before use.