CRYPT [Crypter] Token

CrypterToken.swapBack() (#621-663) sends eth to arbitrary user
Dangerous calls:
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
CrypterToken.buyTokens(uint256,address) (#692-703) sends eth to arbitrary user
Dangerous calls:
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
Ensure that an arbitrary user cannot withdraw unauthorized funds.

Additional information: link

Reentrancy in CrypterToken._transferFrom(address,address,uint256) (#541-567):
External calls:
- pinkAntiBot.onPreTransferCheck(sender,recipient,amount) (#543)
- swapBack() (#549)
- router.swapExactTokensForETHSupportingFeeOnTransferTokens(amountToSwap,0,path,address(this),block.timestamp) (#631-637)
- distributor.deposit{value: amountBNBReflection}() (#647)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
External calls sending eth:
- swapBack() (#549)
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
State variables written after the call(s):
- _balances[sender] = _balances[sender].sub(amount,Insufficient Balance) (#554)
- _balances[recipient] = _balances[recipient].add(amountReceived) (#558)
- amountReceived = takeFee(sender,recipient,amount) (#556)
- _balances[address(this)] = _balances[address(this)].add(feeAmount) (#608)
- triggerAutoBuyback() (#550)
- inSwap = true (#475)
- inSwap = false (#475)
Apply the check-effects-interactions pattern.

Additional information: link

DividendDistributor.distributeDividend(address) (#363-374) ignores return value by BUSD.transfer(shareholder,amount) (#369)
Use SafeERC20, or ensure that the transfer/transferFrom return value is checked.

Additional information: link

Combination 1: Reentrancy vulnerabilities + Functions that send Ether to arbitraty destination. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.

Combination 2: Unchecked transfer + Functions that send Ether to arbitraty destination. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.

Combination 3: Reentrancy vulnerabilities + Unchecked transfer vulnerability. Usual for scams. May be justified by some complex mechanics (e.g. rebase, reflections). DYOR & manual audit are advised.

Contract ownership is not renounced (belongs to a wallet)

authorize(address) should be declared external:
- Auth.authorize(address) (#135-137)
unauthorize(address) should be declared external:
- Auth.unauthorize(address) (#142-144)
transferOwnership(address) should be declared external:
- Auth.transferOwnership(address) (#163-167)
launch() should be declared external:
- CrypterToken.launch() (#725-729)
Use the external attribute for functions never called from the contract.

Additional information: link

CrypterToken.BUSD (#411) is never used in CrypterToken (#407-803)
CrypterToken.DEAD_NON_CHECKSUM (#415) is never used in CrypterToken (#407-803)
Remove unused state variables.

Additional information: link

Reentrancy in CrypterToken.constructor(address,address) (#477-506):
External calls:
- pair = IDEXFactory(router.factory()).createPair(WBNB,address(this)) (#482)
State variables written after the call(s):
- WBNB = router.WETH() (#484)
Reentrancy in DividendDistributor.distributeDividend(address) (#363-374):
External calls:
- BUSD.transfer(shareholder,amount) (#369)
State variables written after the call(s):
- shares[shareholder].totalRealised = shares[shareholder].totalRealised.add(amount) (#371)
- shares[shareholder].totalExcluded = getCumulativeDividends(shares[shareholder].amount) (#372)
Reentrancy in DividendDistributor.process(uint256) (#332-356):
External calls:
- distributeDividend(shareholders[currentIndex]) (#348)
- BUSD.transfer(shareholder,amount) (#369)
State variables written after the call(s):
- currentIndex ++ (#353)
Reentrancy in DividendDistributor.setShare(address,uint256) (#296-310):
External calls:
- distributeDividend(shareholder) (#298)
- BUSD.transfer(shareholder,amount) (#369)
State variables written after the call(s):
- shares[shareholder].amount = amount (#308)
- shares[shareholder].totalExcluded = getCumulativeDividends(shares[shareholder].amount) (#309)
Apply the check-effects-interactions pattern.

Additional information: link

CrypterToken.swapBack() (#621-663) ignores return value by router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
Ensure that all the return values of the function calls are used.

Additional information: link

DividendDistributor.setDistributionCriteria(uint256,uint256) (#291-294) should emit an event for:
- minPeriod = _minPeriod (#292)
- minDistribution = _minDistribution (#293)
CrypterToken.setAutoBuybackSettings(bool,uint256,uint256,uint256) (#705-712) should emit an event for:
- autoBuybackCap = _cap (#707)
- autoBuybackAmount = _amount (#709)
CrypterToken.setBuybackMultiplierSettings(uint256,uint256,uint256) (#714-719) should emit an event for:
- buybackMultiplierNumerator = numerator (#716)
- buybackMultiplierDenominator = denominator (#717)
- buybackMultiplierLength = length (#718)
CrypterToken.setTxLimit(uint256) (#731-734) should emit an event for:
- _maxTxAmount = amount (#733)
CrypterToken.setFees(uint256,uint256,uint256,uint256,uint256) (#754-762) should emit an event for:
- liquidityFee = _liquidityFee (#755)
- reflectionFee = _reflectionFee (#757)
- marketingFee = _marketingFee (#758)
- totalFee = _liquidityFee.add(_buybackFee).add(_reflectionFee).add(_marketingFee) (#759)
- feeDenominator = _feeDenominator (#760)
CrypterToken.setSwapBackSettings(bool,uint256) (#769-772) should emit an event for:
- swapThreshold = _amount (#771)
CrypterToken.setTargetLiquidity(uint256,uint256) (#774-777) should emit an event for:
- targetLiquidity = _target (#775)
- targetLiquidityDenominator = _denominator (#776)
Emit an event for critical parameter changes.

Additional information: link

Auth.transferOwnership(address).adr (#163) lacks a zero-check on :
- owner = adr (#164)
CrypterToken.setFeeReceivers(address,address)._autoLiquidityReceiver (#764) lacks a zero-check on :
- autoLiquidityReceiver = _autoLiquidityReceiver (#765)
CrypterToken.setFeeReceivers(address,address)._marketingFeeReceiver (#764) lacks a zero-check on :
- marketingFeeReceiver = _marketingFeeReceiver (#766)
Check that the address is not zero.

Additional information: link

Reentrancy in CrypterToken._transferFrom(address,address,uint256) (#541-567):
External calls:
- pinkAntiBot.onPreTransferCheck(sender,recipient,amount) (#543)
State variables written after the call(s):
- _basicTransfer(sender,recipient,amount) (#545)
- _balances[sender] = _balances[sender].sub(amount,Insufficient Balance) (#570)
- _balances[recipient] = _balances[recipient].add(amount) (#571)
Reentrancy in CrypterToken.constructor(address,address) (#477-506):
External calls:
- pair = IDEXFactory(router.factory()).createPair(WBNB,address(this)) (#482)
State variables written after the call(s):
- _allowances[address(this)][address(router)] = _totalSupply (#483)
- approve(_dexRouter,_totalSupply) (#498)
- _allowances[msg.sender][spender] = amount (#520)
- approve(address(pair),_totalSupply) (#499)
- _allowances[msg.sender][spender] = amount (#520)
- _balances[msg.sender] = _totalSupply (#500)
- antiBotEnabled = true (#502)
- autoLiquidityReceiver = msg.sender (#495)
- buyBacker[msg.sender] = true (#493)
- distributor = new DividendDistributor(_dexRouter) (#485)
- distributorAddress = address(distributor) (#486)
- isDividendExempt[pair] = true (#490)
- isDividendExempt[address(this)] = true (#491)
- isDividendExempt[DEAD] = true (#492)
- isFeeExempt[msg.sender] = true (#488)
- isTxLimitExempt[msg.sender] = true (#489)
- marketingFeeReceiver = msg.sender (#496)
- pinkAntiBot = IPinkAntiBot(pinkAntiBot_) (#503)
Reentrancy in DividendDistributor.deposit() (#312-330):
External calls:
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: msg.value}(0,path,address(this),block.timestamp) (#319-324)
State variables written after the call(s):
- dividendsPerShare = dividendsPerShare.add(dividendsPerShareAccuracyFactor.mul(amount).div(totalShares)) (#329)
- totalDividends = totalDividends.add(amount) (#328)
Reentrancy in DividendDistributor.distributeDividend(address) (#363-374):
External calls:
- BUSD.transfer(shareholder,amount) (#369)
State variables written after the call(s):
- shareholderClaims[shareholder] = block.timestamp (#370)
Reentrancy in DividendDistributor.setShare(address,uint256) (#296-310):
External calls:
- distributeDividend(shareholder) (#298)
- BUSD.transfer(shareholder,amount) (#369)
State variables written after the call(s):
- addShareholder(shareholder) (#302)
- shareholderIndexes[shareholder] = shareholders.length (#396)
- removeShareholder(shareholder) (#304)
- shareholderIndexes[shareholders[shareholders.length - 1]] = shareholderIndexes[shareholder] (#402)
- addShareholder(shareholder) (#302)
- shareholders.push(shareholder) (#397)
- removeShareholder(shareholder) (#304)
- shareholders[shareholderIndexes[shareholder]] = shareholders[shareholders.length - 1] (#401)
- shareholders.pop() (#403)
- totalShares = totalShares.sub(shares[shareholder].amount).add(amount) (#307)
Reentrancy in CrypterToken.triggerAutoBuyback() (#685-690):
External calls:
- buyTokens(autoBuybackAmount,DEAD) (#686)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
State variables written after the call(s):
- autoBuybackAccumulator = autoBuybackAccumulator.add(autoBuybackAmount) (#688)
- autoBuybackBlockLast = block.number (#687)
- autoBuybackEnabled = false (#689)
Reentrancy in CrypterToken.triggerZeusBuyback(uint256,bool) (#673-679):
External calls:
- buyTokens(amount,DEAD) (#674)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
State variables written after the call(s):
- buybackMultiplierTriggeredAt = block.timestamp (#676)
Apply the check-effects-interactions pattern.

Additional information: link

Reentrancy in CrypterToken._transferFrom(address,address,uint256) (#541-567):
External calls:
- pinkAntiBot.onPreTransferCheck(sender,recipient,amount) (#543)
- swapBack() (#549)
- router.swapExactTokensForETHSupportingFeeOnTransferTokens(amountToSwap,0,path,address(this),block.timestamp) (#631-637)
- distributor.deposit{value: amountBNBReflection}() (#647)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
External calls sending eth:
- swapBack() (#549)
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
Event emitted after the call(s):
- AutoLiquify(amountBNBLiquidity,amountToLiquify) (#661)
- swapBack() (#549)
Reentrancy in CrypterToken._transferFrom(address,address,uint256) (#541-567):
External calls:
- pinkAntiBot.onPreTransferCheck(sender,recipient,amount) (#543)
- swapBack() (#549)
- router.swapExactTokensForETHSupportingFeeOnTransferTokens(amountToSwap,0,path,address(this),block.timestamp) (#631-637)
- distributor.deposit{value: amountBNBReflection}() (#647)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
- distributor.setShare(sender,_balances[sender]) (#560)
- distributor.setShare(recipient,_balances[recipient]) (#561)
- distributor.process(distributorGas) (#563)
External calls sending eth:
- swapBack() (#549)
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
Event emitted after the call(s):
- Transfer(sender,recipient,amountReceived) (#565)
Reentrancy in CrypterToken._transferFrom(address,address,uint256) (#541-567):
External calls:
- pinkAntiBot.onPreTransferCheck(sender,recipient,amount) (#543)
- swapBack() (#549)
- router.swapExactTokensForETHSupportingFeeOnTransferTokens(amountToSwap,0,path,address(this),block.timestamp) (#631-637)
- distributor.deposit{value: amountBNBReflection}() (#647)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
External calls sending eth:
- swapBack() (#549)
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
Event emitted after the call(s):
- Transfer(sender,address(this),feeAmount) (#609)
- amountReceived = takeFee(sender,recipient,amount) (#556)
Reentrancy in CrypterToken.constructor(address,address) (#477-506):
External calls:
- pair = IDEXFactory(router.factory()).createPair(WBNB,address(this)) (#482)
Event emitted after the call(s):
- Approval(msg.sender,spender,amount) (#521)
- approve(address(pair),_totalSupply) (#499)
- Approval(msg.sender,spender,amount) (#521)
- approve(_dexRouter,_totalSupply) (#498)
Reentrancy in CrypterToken.constructor(address,address) (#477-506):
External calls:
- pair = IDEXFactory(router.factory()).createPair(WBNB,address(this)) (#482)
- pinkAntiBot.setTokenOwner(msg.sender) (#504)
Event emitted after the call(s):
- Transfer(address(0),msg.sender,_totalSupply) (#505)
Reentrancy in CrypterToken.swapBack() (#621-663):
External calls:
- router.swapExactTokensForETHSupportingFeeOnTransferTokens(amountToSwap,0,path,address(this),block.timestamp) (#631-637)
- distributor.deposit{value: amountBNBReflection}() (#647)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
External calls sending eth:
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
Event emitted after the call(s):
- AutoLiquify(amountBNBLiquidity,amountToLiquify) (#661)
Reentrancy in CrypterToken.triggerZeusBuyback(uint256,bool) (#673-679):
External calls:
- buyTokens(amount,DEAD) (#674)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
Event emitted after the call(s):
- BuybackMultiplierActive(buybackMultiplierLength) (#677)
Apply the check-effects-interactions pattern.

Additional information: link

DividendDistributor.shouldDistribute(address) (#358-361) uses timestamp for comparisons
Dangerous comparisons:
- shareholderClaims[shareholder] + minPeriod < block.timestamp && getUnpaidEarnings(shareholder) > minDistribution (#359-360)
CrypterToken.getMultipliedFee() (#594-603) uses timestamp for comparisons
Dangerous comparisons:
- launchedAtTimestamp + 86400 > block.timestamp (#595)
- buybackMultiplierTriggeredAt.add(buybackMultiplierLength) > block.timestamp (#597)
CrypterToken.shouldSwapBack() (#614-619) uses timestamp for comparisons
Dangerous comparisons:
- msg.sender != pair && ! inSwap && swapEnabled && _balances[address(this)] >= swapThreshold (#615-618)
CrypterToken.isOverLiquified(uint256,uint256) (#796-798) uses timestamp for comparisons
Dangerous comparisons:
- getLiquidityBacking(accuracy) > target (#797)
Avoid relying on block.timestamp.

Additional information: link

CrypterToken.onlyBuybacker() (#515) compares to a boolean constant:
-require(bool,string)(buyBacker[msg.sender] == true,) (#515)
Remove the equality to the boolean constant.

Additional information: link

DividendDistributor.process(uint256) (#332-356) has costly operations inside a loop:
- currentIndex = 0 (#344)
DividendDistributor.distributeDividend(address) (#363-374) has costly operations inside a loop:
- totalDistributed = totalDistributed.add(amount) (#368)
DividendDistributor.process(uint256) (#332-356) has costly operations inside a loop:
- currentIndex ++ (#353)
Use a local variable to hold the loop computation result.

Additional information: link

CrypterToken.launched() (#721-723) is never used and should be removed
SafeMath.div(uint256,uint256,string) (#79-84) is never used and should be removed
SafeMath.mod(uint256,uint256) (#68-70) is never used and should be removed
SafeMath.mod(uint256,uint256,string) (#86-91) is never used and should be removed
SafeMath.tryAdd(uint256,uint256) (#11-17) is never used and should be removed
SafeMath.tryDiv(uint256,uint256) (#38-43) is never used and should be removed
SafeMath.tryMod(uint256,uint256) (#45-50) is never used and should be removed
SafeMath.tryMul(uint256,uint256) (#26-36) is never used and should be removed
SafeMath.trySub(uint256,uint256) (#19-24) is never used and should be removed
Remove unused functions.

Additional information: link

CrypterToken._maxTxAmount (#422) is set pre-construction with a non-constant function or state variable:
- _totalSupply.div(400)
CrypterToken.swapThreshold (#469) is set pre-construction with a non-constant function or state variable:
- _totalSupply / 2000
Remove any initialization of state variables via non-constant state variables or function calls. If variables must be set upon contract deployment, locate initialization in the constructor instead.

Additional information: link

Pragma version^0.8.0 (#2) allows old versions
solc-0.8.0 is not recommended for deployment
Deploy with any of the following Solidity versions: 0.5.16 - 0.5.17, 0.6.11 - 0.6.12, 0.7.5 - 0.7.6 Use a simple pragma version that allows any of these versions. Consider using the latest version of Solidity for testing.

Additional information: link

Function IDEXRouter.WETH() (#178) is not in mixedCase
Parameter DividendDistributor.setDistributionCriteria(uint256,uint256)._minPeriod (#291) is not in mixedCase
Parameter DividendDistributor.setDistributionCriteria(uint256,uint256)._minDistribution (#291) is not in mixedCase
Variable DividendDistributor._token (#244) is not in mixedCase
Variable DividendDistributor.BUSD (#252) is not in mixedCase
Variable DividendDistributor.WBNB (#253) is not in mixedCase
Parameter CrypterToken.setEnableAntiBot(bool)._enable (#576) is not in mixedCase
Parameter CrypterToken.setAutoBuybackSettings(bool,uint256,uint256,uint256)._enabled (#705) is not in mixedCase
Parameter CrypterToken.setAutoBuybackSettings(bool,uint256,uint256,uint256)._cap (#705) is not in mixedCase
Parameter CrypterToken.setAutoBuybackSettings(bool,uint256,uint256,uint256)._amount (#705) is not in mixedCase
Parameter CrypterToken.setAutoBuybackSettings(bool,uint256,uint256,uint256)._period (#705) is not in mixedCase
Parameter CrypterToken.setFees(uint256,uint256,uint256,uint256,uint256)._liquidityFee (#754) is not in mixedCase
Parameter CrypterToken.setFees(uint256,uint256,uint256,uint256,uint256)._buybackFee (#754) is not in mixedCase
Parameter CrypterToken.setFees(uint256,uint256,uint256,uint256,uint256)._reflectionFee (#754) is not in mixedCase
Parameter CrypterToken.setFees(uint256,uint256,uint256,uint256,uint256)._marketingFee (#754) is not in mixedCase
Parameter CrypterToken.setFees(uint256,uint256,uint256,uint256,uint256)._feeDenominator (#754) is not in mixedCase
Parameter CrypterToken.setFeeReceivers(address,address)._autoLiquidityReceiver (#764) is not in mixedCase
Parameter CrypterToken.setFeeReceivers(address,address)._marketingFeeReceiver (#764) is not in mixedCase
Parameter CrypterToken.setSwapBackSettings(bool,uint256)._enabled (#769) is not in mixedCase
Parameter CrypterToken.setSwapBackSettings(bool,uint256)._amount (#769) is not in mixedCase
Parameter CrypterToken.setTargetLiquidity(uint256,uint256)._target (#774) is not in mixedCase
Parameter CrypterToken.setTargetLiquidity(uint256,uint256)._denominator (#774) is not in mixedCase
Parameter CrypterToken.setDistributionCriteria(uint256,uint256)._minPeriod (#779) is not in mixedCase
Parameter CrypterToken.setDistributionCriteria(uint256,uint256)._minDistribution (#779) is not in mixedCase
Variable CrypterToken.BUSD (#411) is not in mixedCase
Variable CrypterToken.WBNB (#412) is not in mixedCase
Variable CrypterToken.DEAD (#413) is not in mixedCase
Variable CrypterToken.ZERO (#414) is not in mixedCase
Variable CrypterToken.DEAD_NON_CHECKSUM (#415) is not in mixedCase
Constant CrypterToken._name (#417) is not in UPPER_CASE_WITH_UNDERSCORES
Constant CrypterToken._symbol (#418) is not in UPPER_CASE_WITH_UNDERSCORES
Constant CrypterToken._decimals (#419) is not in UPPER_CASE_WITH_UNDERSCORES
Variable CrypterToken._totalSupply (#421) is not in mixedCase
Variable CrypterToken._maxTxAmount (#422) is not in mixedCase
Variable CrypterToken._balances (#424) is not in mixedCase
Variable CrypterToken._allowances (#425) is not in mixedCase
Follow the Solidity naming convention.

Additional information: link

Reentrancy in CrypterToken._transferFrom(address,address,uint256) (#541-567):
External calls:
- swapBack() (#549)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
External calls sending eth:
- swapBack() (#549)
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
- triggerAutoBuyback() (#550)
- router.swapExactETHForTokensSupportingFeeOnTransferTokens{value: amount}(0,path,to,block.timestamp) (#697-702)
State variables written after the call(s):
- _balances[sender] = _balances[sender].sub(amount,Insufficient Balance) (#554)
- _balances[recipient] = _balances[recipient].add(amountReceived) (#558)
- amountReceived = takeFee(sender,recipient,amount) (#556)
- _balances[address(this)] = _balances[address(this)].add(feeAmount) (#608)
- triggerAutoBuyback() (#550)
- autoBuybackAccumulator = autoBuybackAccumulator.add(autoBuybackAmount) (#688)
- triggerAutoBuyback() (#550)
- autoBuybackBlockLast = block.number (#687)
- triggerAutoBuyback() (#550)
- autoBuybackEnabled = false (#689)
- triggerAutoBuyback() (#550)
- inSwap = true (#475)
- inSwap = false (#475)
Event emitted after the call(s):
- Transfer(sender,address(this),feeAmount) (#609)
- amountReceived = takeFee(sender,recipient,amount) (#556)
- Transfer(sender,recipient,amountReceived) (#565)
Reentrancy in CrypterToken.swapBack() (#621-663):
External calls:
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
External calls sending eth:
- distributor.deposit{value: amountBNBReflection}() (#647)
- address(marketingFeeReceiver).transfer(amountBNBMarketing) (#648)
- router.addLiquidityETH{value: amountBNBLiquidity}(address(this),amountToLiquify,0,0,autoLiquidityReceiver,block.timestamp) (#653-660)
Event emitted after the call(s):
- AutoLiquify(amountBNBLiquidity,amountToLiquify) (#661)
Apply the check-effects-interactions pattern.

Additional information: link

Variable IDEXRouter.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountADesired (#183) is too similar to IDEXRouter.addLiquidity(address,address,uint256,uint256,uint256,uint256,address,uint256).amountBDesired (#184)
Prevent variables from having similar names.

Additional information: link

CrypterToken.slitherConstructorVariables() (#407-803) uses literals with too many digits:
- DEAD = 0x000000000000000000000000000000000000dEaD (#413)
CrypterToken.slitherConstructorVariables() (#407-803) uses literals with too many digits:
- ZERO = 0x0000000000000000000000000000000000000000 (#414)
CrypterToken.slitherConstructorVariables() (#407-803) uses literals with too many digits:
- DEAD_NON_CHECKSUM = 0x000000000000000000000000000000000000dEaD (#415)
CrypterToken.slitherConstructorVariables() (#407-803) uses literals with too many digits:
- distributorGas = 500000 (#466)
Use: Ether suffix, Time suffix, or The scientific notation

Additional information: link

CrypterToken.BUSD (#411) should be constant
CrypterToken.DEAD (#413) should be constant
CrypterToken.DEAD_NON_CHECKSUM (#415) should be constant
CrypterToken.ZERO (#414) should be constant
CrypterToken._totalSupply (#421) should be constant
DividendDistributor.WBNB (#253) should be constant
DividendDistributor.dividendsPerShareAccuracyFactor (#266) should be constant
Add the constant attributes to state variables that never change.

Additional information: link

DividendDistributor.distributeDividend(address) (#363-374) has external calls inside a loop: BUSD.transfer(shareholder,amount) (#369)
Favor pull over push strategy for external calls.

Additional information: link

Token is deployed only at one blockchain

Token has only one trading pair

Contract has 5% buy tax and 5% sell tax.
Taxes are low but contract ownership is not renounced. Token has a high risk of becoming a honeypot.

Unable to find whitepaper link on the website

Unable to find token on CoinHunt

Additional information: link

Unable to find code repository for the project

Young tokens have high risks of price dump / death

Token has relatively low CoinGecko rank

Token has relatively low CoinMarketCap rank

Young tokens have high risks of price dump / death