CVE-2020-35962

Summary: 
The sellTokenForLRC function in the vault protocol in the smart contract implementation for Loopring (LRC), an Ethereum token, lacks access control for fee swapping and thus allows price manipulation.
Published: 
Sunday, January 3, 2021 - 07:15
cvss: 
5.0