Mistakes or issues?

Open Disti4ct opened this issue 3 years ago • 1 comments

what the point of this check? require(user[_address].addr != msg.sender); link

I can call the method from a 0x1 address with 0x2 in args. The main codition is - caller address does not have to match with an existed address. I can rewrite any use data and save any data.

Also what the point of this contract if in anyway we can see transactions where all txs arguments are visible, such as string password. Almost all methods are available to any user. Full node also can manually access to the blockchain data and see all details.

Jan 28 '22 13:01 Disti4ct

I forget to update the repo. have you done the change then send the PR.

I will update it

Feb 25 '22 07:02 mzaryabrafique