1. Security Audit #2867 Exposes Critical Flaw: 'Mining Reward Type Confusion' Allows Unauthorized Minting in Real Code
A security audit of a live codebase has confirmed a high-severity vulnerability enabling unauthorized token minting. The flaw, identified as 'Mining Reward Type Confusion,' allows an attacker to mint 150 RTC tokens with zero inputs by simply setting a transaction type to `mailing_reward`. The proof-of-concept demonstra...