GenZ Info
GENZVerse represents a new paradigm in Web3 platforms, combining cutting-edge blockchain technology with user-centric design to create an ecosystem that is both powerful and accessible. Our mission is to bridge the gap between complex blockchain technology and mainstream adoption, making Web3 accessible to everyone while maintaining the core principles of decentralization, security, and transparency.
TrustNet Score
The TrustNet Score evaluates crypto projects based on audit results, security, KYC verification, and social media presence. This score offers a quick, transparent view of a project's credibility, helping users make informed decisions in the Web3 space.
Real-Time Threat Detection
Real-time threat detection, powered by Cyvers.io,
is currently not
activated
for this project.
This advanced feature provides continuous monitoring and instant alerts to safeguard your assets from potential security threats. Real-time detection enhances your project's security by proactively identifying and mitigating risks.
For more information, click here.
Summary and Final Words
No crucial issues found
The contract does not contain issues of high or medium criticality. This means that no known vulnerabilities were found in the source code.
Contract owner cannot mint
It is not possible to mint new tokens.
Contract owner cannot blacklist addresses.
It is not possible to lock user funds by blacklisting addresses.
Contract owner cannot set high fees
The fees, if applicable, can be a maximum of 25% or lower. The contract can therefore not be locked. Please take a look in the comment section for more details.
Contract cannot be locked
Owner cannot lock any user funds.
Token cannot be burned
There is no burning within the contract without any allowances
Ownership is not renounced
The owner retains significant control, which could potentially be used to modify key contract parameters.
Contract is not upgradeable
The contract does not use proxy patterns or other mechanisms to allow future upgrades. Its behavior is locked in its current state.
Scope of Work
This audit encompasses the evaluation of the files listed below, each verified with a SHA-1 Hash. The team referenced above has provided the necessary files for assessment.
The auditing process consists of the following systematic steps:
- Specification Review: Analyze the provided specifications, source code, and instructions to fully understand the smart contract's size, scope, and functionality.
- Manual Code Examination: Conduct a thorough line-by-line review of the source code to identify potential vulnerabilities and areas for improvement.
- Specification Alignment: Ensure that the code accurately implements the provided specifications and intended functionalities.
- Test Coverage Assessment: Evaluate the extent and effectiveness of test cases in covering the codebase, identifying any gaps in testing.
- Symbolic Execution: Analyze the smart contract to determine how various inputs affect execution paths, identifying potential edge cases and vulnerabilities.
- Best Practices Evaluation: Assess the smart contracts against established industry and academic best practices to enhance efficiency, maintainability, and security.
- Actionable Recommendations: Provide detailed, specific, and actionable steps to secure and optimize the smart contracts.
A file with a different Hash has been intentionally or otherwise modified after the security review. A different Hash may indicate a changed condition or potential vulnerability that was not within the scope of this review.
Final Words
The following provides a concise summary of the audit report, accompanied by insightful comments from the auditor. This overview captures the key findings and observations, offering valuable context and clarity.
Ownership Privileges
- The owner can set the GNZ token address only once. Once set, it is permanently locked via tokenLocked = true and cannot be changed.
- The owner can set the LP controller address only once. Once set, it is permanently locked via lpLocked = true and cannot be changed.
- The owner can update the admin wallet address at any time with no delay or timelock.
- The owner can initiate transfer of contract ownership to a new address by calling transferOwnership, which sets pendingOwner; the new address must call acceptOwnership to complete the transfer (two-step handover).
- The owner can pause all contract operations, blocking all purchases, claims, withdrawals, and registrations that use the whenNotPaused path.
- The owner can unpause the contract to resume those operations.
- The owner can blacklist any registered user (except the owner), permanently blocking them from flows that use the notBlacklisted modifier (including purchases, claims, and withdrawals).
- The owner can remove any address from the blacklist; when doing so, the owner also resets that address’s violationCount to zero, so prior strikes do not carry over after unblacklisting.
- The owner can set per-user daily withdrawal limits between 1,000and1,000and1,000,000 USDT.
- The owner can set the global daily withdrawal limit between 10,000and10,000and10,000,000 USDT.
- The owner can set the auto-blacklist violation threshold between 2 and 10 strikes.
- The owner can rescue any ERC20 token accidentally sent to the contract, except USDT and the GenZ token.
Note - This Audit report consists of a security analysis of the GenZVerse smart contract. This analysis did not include functional testing (or unit testing) of the contract’s logic. Moreover, we only audited the mentioned contract for the GenZ team. Other contracts associated with the project were not audited by our team. We recommend investors do their own research before investing.
Files and details
Functions
public
/
State variables
public
/
Total lines
of code
/
Capabilities
Hover on items
/
Findings and Audit result
high Issues | 3 findings
Resolved
#1 high Issue
Violation/Blacklist System Is a Permanent Fund Trap
Four interlocking failures make this system actively harmful to legitimate users. First, innocent protocol rate-limit events trigger violations: calling claimReward() before 24-hour maturity at line 739–741 and exceeding globalDailyWithdrawalGlobal at line 782–784 both invoke _recordViolation(), treating shared protocol capacity limits as individual misconduct. An attacker can front-run a target's withdrawal to push the global counter over the limit, strategically triggering a violation on the victim. Second, removeFromBlacklist() at lines 282–286 only sets blacklisted[user] = false without resetting violationCount[user], which only ever increments at line 204 and has no reset function anywhere in the contract. After unblacklisting, the count remains at threshold — one additional innocent rate-limit hit immediately re-blacklists the user permanently. Third, _creditWithCap() at line 813 checks only _isActive(userAddr) and never blacklisted[userAddr], so income continues accruing to blacklisted-but-active users, consuming their 3× income cap at selfBusiness * 3 (line 819), while withdrawIncome() at line 750 carries notBlacklisted — the USDT is permanently trapped in the contract, credited to the blacklisted user's withdrawableBalance but unwithdrawable due to the modifier, and simultaneously unavailable to the protocol or other users. Fourth, because totalDistributed += credited at line 586 includes income credited to blacklisted-but-capped users, less lapsed income flows to the owner at lines 600–604. The complete failure chain: user hits global limit three times across three calendar days → auto-blacklisted → owner calls removeFromBlacklist() (ineffective since violationCount persists) → user triggers one more rate-limit event → permanently re-blacklisted with all USDT trapped and irrecoverable.
Pending
#2 high Issue
Token Claim Deadlock — Differential Distribution Permanently Locks User Tokens
claimPackageTokens() at line 705 validates token.balanceOf(address(this)) >= claimable for the user's claim only, transfers tokens to the user at line 710, then at lines 716–719 calls _distributeDifferentialTokens() which attempts to send up to 30% additional tokens to ranked uplines via require(token.transfer(up, payout), "token transfer fail") at line 630. When the contract balance equals exactly claimable, the user transfer succeeds but the first upline transfer reverts the entire transaction, resetting p.remainingTokens to its pre-claim value. The user permanently cannot claim despite holding packages with remaining tokens. A second independent deadlock path exists: if any single upline address is a smart contract whose receive function reverts token transfers, every user in that entire downline subtree is permanently blocked from claiming. The structural supply gap compounds both paths: starting supply is 9,000,000 GNZ, a single maximum $100,000 package at minimum price ($0.03) allocates 6,666,667 tokens, and community tokens returning from LP represent only approximately 7–8% of allocation demand, meaning balances tighten as the protocol scales.
Pending
#3 high Issue
First-Purchase Oracle Bypass Enables Flash Loan GNZ Pool Drain
n the _getValidatedPrice function, the protocol relies on the AMM spot price to determine how many GNZ tokens to allocate for a purchased package. To protect against price manipulation, there is a 50% maximum deviation check against the last cachedPrice. However, this check is wrapped inside an if (cachedPrice > 0) condition. On the very first package purchase after deployment, cachedPrice is exactly 0, which means the deviation guard is entirely skipped. The protocol will blindly trust whatever spot price is currently on the AMM. For example, an attacker can execute a flash loan attack by borrowing $5 million USDT and dumping it into the GNZ/USDT AMM pool in a single transaction. This crashes the GNZ spot price by 100x (e.g., from $0.03 to $0.0003). Because it is the first purchase and the deviation check is skipped, the attacker then calls buyPackageUnified to buy a $100,000 package at this manipulated price. The _calculateTokens formula will allocate the attacker roughly 666 million GNZ tokens instead of the normal 6.67 million. This single allocation far exceeds the entire 9 million GNZ balance held by the GenZVerse contract. The attacker repays the flash loan in the same block, netting ~$140,000 in profit over time, while systematically draining the entire GNZ pool and permanently bricking all other legitimate users from claiming their tokens.
medium Issues | 8 findings
Pending
#1 medium Issue
Tier Reward Silently Consumed When Income Cap Is Exhausted
In claimReward(), users[msg.sender].rewardClaimed += amount executes at line 743 before _creditWithCap() is called at line 745. When the user's 3× income cap (selfBusiness * 3 at line 819) is exhausted, _creditWithCap() returns 0 — zero income is added to withdrawableBalance — but rewardClaimed is already permanently incremented. The claimableReward() function at line 725 computes remaining = rewardTotal - rewardClaimed, so every failed zero-credit claim reduces the future claimable pool. The issue is compounded because _checkAndAllocateTierRewards() at line 961 writes u.rewardTotal += rewardAmount directly without calling _creditWithCap(), allocating $300 to $100,000 in tier rewards regardless of remaining cap space. A Tier-6 user whose cap is consumed by regular differential income will have the full $100,000 tier reward silently destroyed through repeated zero-credit claimReward() calls — no error thrown, no distinguishing event, no indication that credits were lost.
Pending
#2 medium Issue
Comprehensive Griefing — Registration Slot Filling and GNZ Multiplier Eligibility Destruction
Two permanent, near-zero-cost attacks exist against any target user. Attack A exploits the free register() function at lines 321–350 which requires zero USDT. An attacker creates 1,000 sybil addresses and registers each under the target sponsor, filling directs[sponsor] to MAX_DIRECTS = 1000 checked at line 331. Cost on Polygon is approximately $1–2 in gas. Once full, the target sponsor can never accept new referrals permanently. Each sybil registration also injects $15 airdrop to the sybil (line 338) and $1 credits to 15 upline levels (lines 341–344), creating unbacked token obligations. Attack B exploits _markOldPackagesIneligible(beneficiary) at line 396, called inside every buyPackageUnified() execution. The attacker — who must have purchased at least one package themselves to pass _isActive(payer) at line 374 (minimum practical cost $1–$50 depending on LP processing thresholds) — calls buyPackageUnified(target, 1) with a dust amount. Lines 525–532 then iterate all of the target's packages setting gnzMultiplierEligible = false for any not yet activated. The target's packages permanently lose the GNZ multiplier, dropping their daily token unlock rate from 1% to 0.3% — a 3.33× reduction that cannot be reversed.
Pending
#3 medium Issue
Structural Protocol Insolvency — Token Over-Allocation, GenZ Recycling, and Unbacked Tier Obligations
Four compounding code-level defects create structural insolvency. First, _calculateTokens(base, price) at line 394 uses base — the full nominal package value including airdrop discount — so a user paying $85 USDT with a $15 airdrop receives tokens allocated for $100. At minimum price $0.03, one $100,000 package allocates 6,666,667 GNZ, and totalTokensAllocated at line 546 is never compared against token.balanceOf(address(this)) at purchase time, allowing unlimited over-commitment. Second, incomeBase = base - air at line 383 does not subtract genZ, so _distributeDifferential() at lines 414–418 distributes income as if the GenZ wallet credit were fresh external USDT, when it is recycled from the prior withdrawal's 40% cycle credit at line 797. Third, _createPackage() at line 398 stores incomeBase (not usdtRequired, the actual USDT transferred) as actualUsdtPaid, so GNZ multiplier sponsor rewards at line 656 are calculated on an overstated figure. Fourth, _checkAndAllocateTierRewards() at line 961 writes u.rewardTotal += rewardAmount directly — committing up to $134,300 per Tier-6 user with zero USDT deposit or reserve, requiring 19.2× that user's own deposit from others to service.
Pending
#4 medium Issue
Stale cachedPrice Causes Permanent Purchase DoS — No Emergency Recovery Function
cachedPrice at line 497 updates only on successful purchases. If the GNZ market moves more than 50% from the last cached value during any purchase lull, require(priceDiff <= maxDiff, "PRICE_CHANGE_TOO_LARGE") at line 483 permanently blocks every new purchase attempt. The deadlock is self-reinforcing: purchasing requires updating cachedPrice, but purchasing is blocked until cachedPrice updates. event EmergencyPriceSet is declared at line 181 but no corresponding function exists anywhere in the contract — the recovery mechanism was designed but never implemented. An additional vulnerability exists on the first-ever purchase: when cachedPrice = 0, line 480's if (cachedPrice > 0) skips the entire protection check, leaving the first purchase completely unprotected against price manipulation within the MIN\PRICE ($0.03) to MAX\_PRICE ($1000) range.
Pending
#5 medium Issue
Gas DoS on Team Business Updates — Targeted Purchase Lockout
Every buyPackageUnified() triggers _updateTeamBusinessUpline() at line 992, which iterates up to 50 ancestor levels. At each level, _calculateTeamMetrics() at line 977 iterates up to 500 direct referrals, reading users[ref].selfBusiness + users[ref].totalTeamVolume for each (2 cold SLOADs per entry at line 981). Worst case: 50 levels × 500 directs × 2 SLOADs = 50,000 storage reads ≈ 105M gas, well beyond Polygon's ~30M block gas limit. The unchangedCount >= 3 early exit at line 1006 does not fire along the buyer's legitimate upline path when the buyer's branch is within the first 500 directs of each ancestor — which is the case in the deliberate attack scenario. An attacker using the free registration exploit (HIGH-03) registers 500 sybils under each of 50 of the target's ancestor nodes for approximately 25,000 transactions × ~$0.001 = $25 total cost. Subsequently, the target's purchases require 50 × 500 × 2 = 50,000 SLOADs, permanently exceeding the block gas limit. Additionally, the 500-cap means directs at indices 501–999 are invisible to both totalVolume and strongest-leg calculations, producing incorrect rank metrics for highly active sponsors.
Resolved
#6 medium Issue
Dead Blacklist Security Code — Self-Referral and Flash Loan Deterrents Never Execute
In register(), require(users[sponsor].registered && sponsor != msg.sender && sponsor != address(0), "invalid sponsor") at line 325 already reverts if sponsor == msg.sender. The subsequent if (sponsor == msg.sender) block at lines 327–330 is therefore guaranteed-false dead code — _instantBlacklist(msg.sender, "SELF_REFERRAL_ATTEMPT") at line 328 can never execute. In buyPackageUnified(), require(lastPurchaseBlock[beneficiary] != block.number, "NO_FLASH_LOANS") at line 366 fires before the identical if check at lines 368–371, making _instantBlacklist(msg.sender, "FLASH_LOAN_PURCHASE") at line 369 unreachable. Self-referrers and flash-loan users are rejected by the revert, but the intended permanent blacklist deterrent never fires. Repeat offenders accumulate no consequence beyond the gas cost of each reverted transaction.
Pending
#7 medium Issue
Predictable 1-Hour Price Window Reset Enables MEV Price Anchoring
hourWindowStart is a public state variable and the window reset condition block.timestamp - hourWindowStart >= PRICE_STALE_THRESHOLD is fully deterministic from on-chain data. At the exact second a window expires, lines 491–492 reset hourWindowStart = block.timestamp and hourHighestPrice = freshPrice. An MEV bot monitoring the chain front-runs the reset with a purchase at a local price minimum, anchoring hourHighestPrice to the low value. Since effectivePrice = hourHighestPrice at line 495, all subsequent buyers in that window use this artificially anchored price, receiving more tokens per dollar than later buyers while the MEV bot maximizes its own token allocation. This pattern repeats every hour throughout the protocol's lifetime.
Pending
#8 medium Issue
Hard-Revert in Upline Distribution Leads to Permanent DoS on Token Claims
The _distributeDifferentialTokens function distributes token bonuses to a user's upline network whenever that user claims their package tokens. However, it executes these external transfers using a strict require(token.transfer(up, payout), "token transfer fail"); statement inside a for loop. If any single transfer in that loop fails, the error bubbles up and reverts the entire transaction. For example, if Alice attempts to claim her tokens, the contract automatically attempts to send a bonus to her upline sponsor, Bob. If Bob is a smart contract that rejects ERC20 tokens, or if the token owner decides to pause the GNZ token contract globally, the transfer to Bob will fail. Because of the require statement, this single failure will revert Alice's entire claimPackageTokens transaction, permanently locking Alice out of her earned tokens through no fault of her own. This effectively gives the token owner or a faulty upline a permanent veto over all user claims.
low Issues | 4 findings
Pending
#1 low Issue
Differential Token Distributions Bypass 365-Day Vesting Lock
GenZToken's vesting mechanism at line 214 triggers only when msg.sender == dexPair. When GenZVerse calls token.transfer(up, payout) at line 630, the sender is GenZVerse itself — marked isExemptFromVesting[businessContract] = true in GenZToken's constructor — not dexPair. No _lockTokens() call is made. Uplines receiving differential token income therefore receive immediately transferable, sellable tokens with zero vesting restriction. Note that both regular package-claim recipients (tokens sent from GenZVerse at line 710) and differential recipients share this bypass — the vesting lock applies exclusively to direct DEX purchasers. The specific concern with differential distributions is that high-ranked uplines (up to Rank-6 receiving 30% of downline claims) can accumulate large amounts of immediately liquid tokens, creating a selling advantage over DEX-buying holders during the intended lock period.
Pending
#2 low Issue
Airdrop Balance Locked at 0% Redemption for Rank-0 Users After First Purchase
The function returns 5% when !u.firstPurchase at line 931, enabling new registrants to use their $15 registration airdrop. After the first package purchase sets firstPurchase = true, the function evaluates rank and returns 0% for Rank 0 at line 941. Qualifying for Rank 1 requires simultaneously meeting selfBusiness >= $100, directBusiness >= $300, and teamBusiness >= $1,500 at lines 910–913 — typically requiring multiple successful referrals after the first purchase. During this interim period, the registration airdrop plus any accumulated upline credits ($1 per registration per 15 upline levels) become completely inaccessible. The system gives credits at registration then revokes access to them at the exact moment the user becomes an active transacting participant.
Pending
#3 low Issue
Multiple Accounting Inaccuracies in State Variables and View Functions
totalWithdrawn at line 796 increments by the full withdrawableBalance including the 40% cycleCredit that stays in the contract as GenZBalance, overstating external cash-out by 2× for every user. directIncome and rankIncome reset to 0 on every withdrawal at lines 793–794, destroying all historical per-type income breakdown. receiveCommunityTokens() at lines 314–319 accepts incoming token notifications but performs zero state updates — no community pool balance tracking exists, and tokens silently blend into the general balance. lastPriceUpdate at line 498 is written on every purchase but never read by any function, check, or modifier, consuming 5,000 gas per purchase for zero functional benefit. _bonusPercent() at line 1013 uses usdAmount / USD_UNIT integer division, causing a user paying $50,000.999999 to receive 80% bonus instead of 100% with no user-facing indication.
Pending
#4 low Issue
_creditWithCap Partial Branch: Ratio Rounds to Zero — Cap Consumed With Zero Credit
In the _creditWithCap function, when a user's incoming income exceeds their remainingCap, the contract attempts to calculate a proportional payout. It calculates a ratio by multiplying the remainingCap by USD_UNIT (1e6) and dividing by capConsumption. However, because Solidity does not support fractions and rounds down on integer division, this formula will evaluate to exactly 0 if the user's remainingCap is extremely small compared to the incoming capConsumption (specifically, when remainingCap < capConsumption / USD_UNIT). When ratio evaluates to 0, the resulting payoutToCredit also becomes 0. However, the contract still executes u.totalCredited += remainingCap;. This means the user's remaining income cap is permanently consumed and exhausted, but they receive absolutely zero withdrawable balance in return. Example: Assume USD_UNIT is 1,000,000 (1e6). A user has almost reached their income cap and has a tiny remainingCap of just 2 units. A large purchase happens in their downline, resulting in a capConsumption of 5,000,000 units ($5). The contract calculates the ratio: (2 * 1,000,000) / 5,000,000 = 2,000,000 / 5,000,000 = 0. Because the ratio is 0, payoutToCredit evaluates to 0. The user's totalCredited increases by 2, permanently exhausting their cap, but they are credited 0 income. While the financial loss in this exact scenario is "dust" (negligible), it highlights a mathematical precision flaw that breaks the protocol's accounting invariants.
informational Issues | 6 findings
Resolved
#1 informational Issue
Floating pragma solidity version.
Adding the constant version of solidity is recommended, as this prevents the unintentional deployment of a contract with an outdated compiler that contains unresolved bugs.
Resolved
#2 informational Issue
Permanently Frozen Ownership — No Ownership Transfer Mechanism Exists
The custom Ownable at lines 21–25 declares only address public owner, a constructor setting owner = msg.sender, and the onlyOwner modifier. No transferOwnership() or acceptOwnership() function exists anywhere in the contract. Unlike GenZToken which implements a complete two-step pattern, GenZVerse ownership is permanently frozen to the deployer address. If the deployer wallet is compromised, an attacker gains irrecoverable permanent control over all GenZVerse admin functions: pause()/unpause() (freeze/unfreeze all operations), UnauthorisedUser() (blacklist any user to trap their funds), setAdminWallet() (redirect 10% of all withdrawals), setDailyWithdrawalLimits() and setViolationThreshold() (surgically auto-blacklist targeted users), and rescueTokens(). There is zero on-chain recovery path. Note: this affects GenZVerse, GenZLPController, and GenZReservePool — see those files for their respective manifestations of the same root cause.
Resolved
#3 informational Issue
Dead Blacklist Security Deterrent — Blacklisting Never Fires Despite require Logic
In both functions, the preceding require statement that protects the same condition causes the subsequent if block containing _instantBlacklist() to be permanently unreachable code. The behavioral deterrent is completely absent while rejection protection works normally via the revert.
Pending
#4 informational Issue
Dead Source Constants Create Silent Income Routing Trap
Constants SRC_DIRECT ("direct_income"), SRC_REWARD ("reward"), and SRC_TIER_REWARD ("tier_reward") at lines 68–72 are never passed to _creditWithCap() anywhere in the contract. The else branch at line 872 silently routes all unrecognized sources to rankIncome and withdrawableBalance. Future developers adding income types with string typos will have income silently misrouted with no compile-time or runtime error indication.
Pending
#5 informational Issue
Batch Token Claiming Is Mathematically Superior — Protocol UX Opposes Optimal Strategy
The formula remainingTokens × dailyBP × daysCount / 10000 at line 684 applies daysCount to the current remainingTokens balance. Claiming daily applies a smaller rate to a progressively shrinking base, while batch-claiming after N days applies the same rate to a larger base. For the 1%/day GNZ multiplier rate, waiting 100 days and claiming once recovers 100% of remaining tokens; daily claiming over 100 days recovers only approximately 63.4%. Users following the protocol's implied daily-claim UX receive structurally fewer tokens than those who wait, inverting the intended engagement incentive.
Pending
#6 informational Issue
Frozen State Architecture — No Migration Path When Dependent Contracts Are Buggy
tokenLocked and lpLocked one-time flags at lines 136–137, enforced in setToken() at lines 241–244 and setLP() at lines 249–253, make the GenZ token address and LP controller permanently immutable after first assignment. If a critical bug is found in GenZToken or GenZLPController, GenZVerse cannot update its references. The only remediation is full protocol redeployment with complete loss of all user state including registrations, packages, income balances, tier claims, and accumulated business volumes. No snapshot or migration mechanism exists.