CVE-2020-19767

Name of the Vulnerable Software and Affected Versions: 0xRACER version 1.0

Description: A lack of target address verification in the destroycontract() function allows attackers to steal tokens from victim users via a crafted script. This issue enables attackers to exploit the lack of verification, potentially leading to token theft.

Recommendations: For 0xRACER version 1.0, as a temporary workaround, consider disabling the destroycontract() function until a patch is available. Restrict access to the destroycontract() function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.