Treasure DAO (Marketplace): Logic Bug (Zero-Quantity Purchase)
Treasure DAO's NFT marketplace on Arbitrum was drained of ~$1.4M in NFTs because `buyItem()` never checked if `quantity > 0` — a missing one-line validation allowed attackers to buy any listing for free.
Summary #
Treasure DAO (Marketplace) suffered a NFT Marketplace on 2022-03-03, resulting in a loss of approximately $1M.
What happened #
Treasure DAO's NFT marketplace on Arbitrum was drained of ~$1.4M in NFTs because `buyItem()` never checked if `quantity > 0` — a missing one-line validation allowed attackers to buy any listing for free.
Linked factors #
- RD-F-007 — related : Bug bounty absent — baseline integrity gap [via dashboard_risk_factors/Bug bounty: Unknown]