Project

General

Profile

Actions
Copy link

Bug #4469

open

Users are able to bypass "insufficient funds" when transferring or staking

Added by Fernanda Ribeiro over 2 years ago. Updated over 2 years ago.

Status:
In Study
Priority:
Normal
Assignee:
-
Target version:
2.2.0
Start date:
05/18/2022
Due date:
% Done:

0%

Estimated time:

Description

Description: Users are able to bypass "insufficient funds" when transferring or staking by adding a dash or a space to the number.

How to recreate:

  1. Navigate to the Aventus Network from the wallet's dashboard, then press "Send";
  2. Enter the recipient's address and a larger amount than your current balance, followed by a dash or a space;
  3. Notice how the preview shows a larger amount than your balance;
  4. Press "Sign and Submit" and notice that the transaction is sent and only then rejected;

Kindly see the screenshots for more details.

Files

Download all files
screenshot_20220516-130945.png (199 KB) screenshot_20220516-130945.png Fernanda Ribeiro, 05/18/2022 05:04 PM
screenshot_20220516-130935.png (1000 KB) screenshot_20220516-130935.png Fernanda Ribeiro, 05/18/2022 05:04 PM
Actions
Copy link
 #1

Updated by Olivier Bitsch over 2 years ago

  • Target version set to 2.1.0 (master)
Actions
Copy link
 #2

Updated by Olivier Bitsch over 2 years ago

  • Target version changed from 2.1.0 (master) to 2.2.0
Actions
Copy link

Also available in: Atom PDF