Blog

TravelHelper smart contract audit report .

Table of Contents

Read Time: 2 minutes

High vulnerability issues:

Unmet condition in burnTokensForSale():-

There is a requirement (tokens > 0) statement in the burnTokensForSale() function, where tokens are the balance of crowdsale contract so it means that this function can only succeed when all tokens will be sold. In crowdsale function there is a function finalizeAndBurn() which burns the tokens first and then finalize the sale, finalizing the sale means that investors can transfer their tokens after finalizing the sale. So the bug here is that if all tokens will be sold than this function will never succeed as it will be revert in burnTokensForSale() and investors will never able to transfer their tokens.

Medium severity issues:

There was no medium severity issue found.

Low severity issues:

Solidity version should be fixed in smart contracts. For example- It should be
pragma solidity 0.4.24 and not pragma solidity ^0.4.24
Transfer Events are not emitted in activateSaleContract() function in token contract.
Final comments:-
The contract should be properly commented. It is not commented in some places. It is advised to comment the code as it is good practice.
2. Use of block number instead of timestamp is done perfectly.

You can check the unaudited and audited code along with the report in the following github repo.(https://github.com/Quillhash/TravelHelper).

Conclusion:-
All the changes suggested by our team has been applied by TravelHelper. So their contracts are secure now as of our investigation and their audited contracts are already deployed on the main net.

We’re available for smart contract development and security auditing work. You can fill this form https://quillhash.typeform.com/to/KQ5Hhm to get in touch.


At QuillHash, we understand the Potential of Blockchain and have a good team of developers who can develop any blockchain applications like Smart Contracts, dApps,Smart Coins, DeFi, DEX on the any Blockchain Platform like EthereumEOS and Hyperledger.

To be up to date with our work, Join Our Community :-

Telegram | Twitter | Facebook | LinkedIn


At QuillHash, we understand the Potential of Blockchain and have a good team of developers who can develop any blockchain applications like Smart Contracts, dApps,Smart Coins, DeFi, DEX on the any Blockchain Platform like EthereumEOS and Hyperledger.

To be up to date with our work, Join Our Community :-

Telegram | Twitter | Facebook | LinkedIn

182 Views

Related Articles

View All

Trending

The $2M @mirror_protocol exploit post #TerraLUNA crisis was due to one of the the trivial vulnerabilities.

The pricing oracle set the proce fo #Luna to that of the new version of the coin even as the price of the original coin plummeted far below 1 cent.

More👇

A lot of founders think third-party audits are a waste of time and money.

They’re wrong!

They help you

- Reduce time-to-market
- Focus on launch prep
- Product development
- Build community trust

#smartcontractaudit

Load More...

Inverse Finance hacked again for $1.2M⚠️In ‘Optimism’ Tokens 🚨

Inverse Finance’s Frontier money market was subject to an oracle price manipulation incident.It resulted in a net loss of $5.83 million in $DOLA, with the attacker earning a total of $1.2 million. 

Become a Quiffiliate!
Join our mission to safeguard web3

Sounds Interesting, Right? All you have to do is:

1

Refer QuillAudits to Web3 projects for audits.

2

Earn rewards as we conclude the audits.

3

Thereby help us Secure web3 ecosystem.

Total Rewards Shared Out: $150K+