beforeTokenTransfer function allows the transfer of NFTs to non-verified addresses

Summary

The _beforeTokenTransfer function does not prevent NFT transfers to non-verified addresses. This could lead to potential issues with NFT ownership and loan management.

Vulnerability Detail

In the LenderManager.sol contract, the _beforeTokenTransfer function allows NFT transfers to non-verified addresses, which could lead to issues with NFT ownership and loan management.

Impact

NFT transfers to non-verified addresses could compromise the platform's integrity and lead to issues with loan management.

Code Snippet

https://github.com/sherlock-audit/2023-03-teller/blob/main/teller-protocol-v2/packages/contracts/contracts/LenderManager.sol#L74

Tool used

Manual Review

Recommendation

Add checks to the _beforeTokenTransfer function to ensure that NFTs can only be transferred to verified addresses. This will help maintain the platform's integrity and prevent issues with loan management.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

063.md

063.md

beforeTokenTransfer function allows the transfer of NFTs to non-verified addresses

Summary

Vulnerability Detail

Impact

Code Snippet

Tool used

Recommendation

Files

063.md

Latest commit

History

063.md

File metadata and controls

beforeTokenTransfer function allows the transfer of NFTs to non-verified addresses

Summary

Vulnerability Detail

Impact

Code Snippet

Tool used

Recommendation