All Reports
TokenTable Solana Merkle Airdrop

TokenTable Solana Merkle Airdrop

2025-04-16
Download PDF
Critical0
High0
Medium0
Low1
Info5

About the Protocol

Solana program for merkle-proof-based token airdrop distribution.

Findings (6)

L-01LowFixed

Fee configuration conflict

Shared project_id between airdrop and unlocker programs causes fee configuration conflicts.

I-01InfoFixed

Allow the fee_collector to be set arbitrarily during initialization

Fee collector address can be set to an arbitrary value when init_fee_account is false.

I-02InfoFixed

Changing the fee_collector to a different program will cause instructions to fail

Switching fee collector programs breaks existing instruction execution.

I-03InfoFixed

Lack of Option wrapper on fee account

Fee-related accounts lack proper Option wrapping for conditional presence.

I-04InfoFixed

Miscalculated MerkleAirdrop size

Account size calculation for MerkleAirdrop contains errors.

Ready to Secure Your Project?

Let's discuss your project and ensure your security!