FREE NFT Development Smart Contract Security Questions and Answers

Question 1

An NFT contract has a public `mint()` function that anyone can call. Which of the following is the MOST critical security vulnerability this presents?

Accepted Answer

Unauthorized creation of NFTs, potentially exceeding the intended `MAX_SUPPLY`.

Answer

An unprotected `mint()` function is a severe access control vulnerability. It allows any user or contract to create an unlimited number of NFTs, potentially devaluing the collection and violating the project's intended scarcity. Proper access control, such as using an `onlyOwner` modifier or a role-based system, is essential to restrict minting privileges.

Question 2

A developer is creating an NFT with rarity traits determined at mint time. They use `keccak256(abi.encodePacked(block.timestamp, msg.sender))` as the source of randomness. What is the primary security risk associated with this approach?

Accepted Answer

The result is predictable, allowing miners or attackers to influence or front-run the minting of rare NFTs.

Answer

On-chain variables like `block.timestamp`, `block.number`, and `blockhash` are not truly random and can be predicted or influenced by miners. An attacker could repeatedly call the mint function, reverting the transaction if the outcome isn't favorable, or a miner could reorder transactions to secure a rare NFT for themselves. Secure randomness requires off-chain solutions like a VRF (Verifiable Random Function) oracle.

Question 3

An NFT marketplace contract allows users to withdraw their earnings. The function first sends the user their ETH and then updates their internal balance to zero. Which vulnerability is this pattern most susceptible to?

Accepted Answer

Reentrancy

Answer

This sequence of operations (external call before state change) is a classic example of a reentrancy vulnerability. A malicious contract, upon receiving the ETH in its fallback function, could call the withdraw function again before the original call has updated the balance. This would allow the attacker to drain funds repeatedly. The correct pattern is Checks-Effects-Interactions: first check conditions, then update the state (e.g., set balance to zero), and finally interact with the external contract (send ETH).

Question 4

A developer working on an NFT contract using Solidity `^0.7.0` implements a `batchMint(uint256 quantity)` function. The function calculates the total price as `quantity * MINT_PRICE`. If `quantity` is a very large number, which vulnerability could be exploited?

Accepted Answer

Integer Overflow

Answer

In Solidity versions prior to 0.8.0, arithmetic operations did not automatically revert on overflow. If a user provides a `quantity` large enough, the multiplication `quantity * MINT_PRICE` could wrap around to a very small number or zero, allowing the user to mint many NFTs for free or a fraction of the cost. Solidity 0.8.0+ introduced built-in overflow and underflow protection, which reverts the transaction in such cases.

Question 5

To prevent NFTs from being permanently locked, the `safeTransferFrom` function in ERC-721 performs a check on the recipient contract. What is the name of the function it calls on the recipient to ensure it can handle the token?

Accepted Answer

`onERC721Received(operator, from, tokenId, data)`

Answer

The ERC-721 standard specifies that when `safeTransferFrom` is called with a recipient that is a contract, it MUST call `onERC721Received` on that contract. The recipient contract is expected to return a specific magic value (`bytes4(keccak256("onERC721Received(address,address,uint256,bytes)"))`) to signal that it can accept the transfer. If it doesn't, or if the call reverts, the transfer is reverted, preventing the NFT from being stuck.

NFT Development Practice Test

NFT Development Practice Test

FREE NFT Development Smart Contract Security Questions and Answers