MENU

The true meaning of Solidity private variable

0
622
0

Can you believe, if I say "I can guess your password saved in your contract, even if it’s defined as private"?

I didn’t believe it before I played this game.

private doesn’t actually mean that the data is hidden/safe & unaccessible. ? Everything you use in a smart contract is publicly visible, even local variables and state variables marked private.

In this game, you can read the password stored as private on a smart contract, and hack the contract in order to steal ETH.

Github:

https://github.com/maAPPsDEV/vault-attack

Sorry, the comment form is closed at this time.