During the security assessment for a blockchain-based web application, it was observed that some of the functions were vulnerable to unauthenticated ETH transfer from an admin wallet to the attacker’s wallet. The web application was a booking application where a user can book tickets and pay with a crypto token. Also, the application was integrated with Metamask framework to support web3 transactions over the blockchain.
Support the originator by clicking the read the rest link below.