Discovery Trending Launches KYC Verified Watchlist Risk Alerts
Token Minter AI Threat Detection Token Burner
Blog & News Docs Visit SolidProof.io

XDoor Info

xdoor.vercel.app

The blockchain world is a vast universe of infinite possibilities — behind every door lies an unknown realm of opportunity and risk. You never know what awaits when you open the next door — it could be fortune and growth, or it could be danger and loss. Every door is a choice, and every push forward marks a turning point. XDOOR stands as the gateway to the unknown, a mysterious entrance at the edge of the X-Layer world. Each XDOOR represents a new beginning. Some hesitate before it. Others push forward with courage. Every brave decision can change your destiny. A choice is not merely an action — it is the key to meeting your fate.

XDoor Logo
Onboarded date 04/12/2025

TrustNet Score

The TrustNet Score evaluates crypto projects based on audit results, security, KYC verification, and social media presence. This score offers a quick, transparent view of a project's credibility, helping users make informed decisions in the Web3 space.

15.98
Poor Excellent

Real-Time Threat Detection

Real-time threat detection, powered by Cyvers.io, is currently not activated for this project.

This advanced feature provides continuous monitoring and instant alerts to safeguard your assets from potential security threats. Real-time detection enhances your project's security by proactively identifying and mitigating risks. For more information, click here.

Security Assessments

Select the audit
"Static Analysis Dynamic Analysis Symbolic Execution SWC Check Manual Review"
Contract address
N/A
Network N/A
License N/A
Compiler N/A
Type N/A
Language Solidity
Onboard date 2025/12/04
Revision date 2025/12/04

Summary and Final Words

No crucial issues found

The contract does not contain issues of high or medium criticality. This means that no known vulnerabilities were found in the source code.

Contract owner cannot mint

It is not possible to mint new tokens.

Contract owner cannot blacklist addresses.

It is not possible to lock user funds by blacklisting addresses.

Contract owner cannot set high fees

The fees, if applicable, can be a maximum of 25% or lower. The contract can therefore not be locked. Please take a look in the comment section for more details.

Contract cannot be locked

Owner cannot lock any user funds.

Token cannot be burned

There is no burning within the contract without any allowances

Ownership is not renounced

The owner retains significant control, which could potentially be used to modify key contract parameters.

Contract is not upgradeable

The contract does not use proxy patterns or other mechanisms to allow future upgrades. Its behavior is locked in its current state.

Scope of Work

This audit encompasses the evaluation of the files listed below, each verified with a SHA-1 Hash. The team referenced above has provided the necessary files for assessment.

The auditing process consists of the following systematic steps:

  1. Specification Review: Analyze the provided specifications, source code, and instructions to fully understand the smart contract's size, scope, and functionality.
  2. Manual Code Examination: Conduct a thorough line-by-line review of the source code to identify potential vulnerabilities and areas for improvement.
  3. Specification Alignment: Ensure that the code accurately implements the provided specifications and intended functionalities.
  4. Test Coverage Assessment: Evaluate the extent and effectiveness of test cases in covering the codebase, identifying any gaps in testing.
  5. Symbolic Execution: Analyze the smart contract to determine how various inputs affect execution paths, identifying potential edge cases and vulnerabilities.
  6. Best Practices Evaluation: Assess the smart contracts against established industry and academic best practices to enhance efficiency, maintainability, and security.
  7. Actionable Recommendations: Provide detailed, specific, and actionable steps to secure and optimize the smart contracts.

A file with a different Hash has been intentionally or otherwise modified after the security review. A different Hash may indicate a changed condition or potential vulnerability that was not within the scope of this review.

Final Words

The following provides a concise summary of the audit report, accompanied by insightful comments from the auditor. This overview captures the key findings and observations, offering valuable context and clarity.

Ownership Privileges
  • The owner can set the swap pair list.
  • The owner can add the swap router address.
  • The owner can whitelist addresses in batches.
  • The owner can add or remove the batch of addresses from the dividend exclusion list.
  • The owner can change the end time of the current dividend distribution round.

Note - This Audit report consists of a security analysis of the XDoorBase smart contract. This analysis did not include functional testing (or unit testing) of the contract’s logic. Moreover, we only audited one token contract for the XDoor team. Other contracts associated with the project were not audited by our team. We recommend investors do their own research before investing.

Files and details

Functions
public

/

State variables
public

/

Total lines
of code

/

Capabilities
Hover on items

/

Findings and Audit result

Critical
High
Medium
1
Low
Optimization
1
Informational
medium Issues | 2 findings

Resolved

#1 medium Issue
Unprotected DEX Swaps Leading to Value Extraction via Sandwich Attacks
XDoorBaseToken.sol
L218-273
Description

The doSwapFund function interacts with the Uniswap V2 router by calling swapExactTokensForETHSupportingFeeOnTransferTokens with the amountOutMin parameter hardcoded to 0. This configuration signals to the router that the contract will accept any amount of ETH in return for its tokens, regardless of price impact. This creates a critical vulnerability where MEV bots can execute a "sandwich attack" by front-running the transaction to manipulate the price, causing the swap to execute at an extremely unfavorable rate, and then back-running it to restore the price and extract the difference as profit. This will result in a consistent and significant drain of the protocol's tax revenues, directly impacting the funds allocated for dividends, liquidity, and the Fomo3d game. A similar vulnerability exists in all other functions that interact with the DEX, such as _addLiquidityToZero.

Comments

The amountOutMin parameter should be replaced with a dynamically calculated value that enforces a maximum slippage tolerance. Before executing the swap, the contract should first query the router's getAmountsOut function to determine the expected amount of ETH for the given swapAmount. A minimum acceptable amount should then be calculated based on a reasonable slippage rate (e.g., 1-3%) from this expected value. This calculated minimum must be used in the swap call. This will cause the transaction to revert if the price moves unfavorably beyond the set tolerance, protecting the protocol's funds from both normal market volatility and malicious price manipulation. This same mitigation strategy must be applied to all DEX interactions throughout the contract.

Resolved

#2 medium Issue
Unprotected Liquidity Functions Expose Users to Guaranteed Value Extraction
XDoorBaseToken.sol
L421-451
L452-471
Description

The public addLiquidity and removeLiquidity functions are critically flawed as they interact with the Uniswap V2 router with the amountTokenMin and amountETHMin parameters hardcoded to 0. This configuration completely removes slippage protection, creating a direct opportunity for MEV bots to perform sandwich attacks against any user who calls these functions. An attacker can manipulate the pool price immediately before and after the user's transaction, forcing the user to add or remove liquidity at a highly unfavorable rate. This results in the user receiving fewer LP tokens on deposit, or fewer underlying tokens on withdrawal, than they are entitled to, with the value difference being extracted by the attacker as profit. This design flaw exposes every liquidity provider using these functions to guaranteed and repeated financial loss, fundamentally undermining the security of user-deposited funds.

Comments

To rectify this, the functions must be fundamentally redesigned to prioritize user security. The addLiquidity and removeLiquidity functions should be modified to accept amountTokenMin and amountETHMin as input parameters directly from the user. These values, which should be calculated by a trusted front-end based on the user's desired slippage tolerance, must then be passed into the respective calls to the Uniswap V2 router. This ensures that if the on-chain price moves beyond the user's accepted tolerance at the time of execution, the transaction will revert, thereby protecting the user's funds from both market volatility and malicious price manipulation. Additionally, the token transfer logic within addLiquidity should be corrected to follow the standard ERC20 approve and transferFrom(msg.sender, ...) pattern.

low Issues | 1 findings

Acknowledged

#1 low Issue
Unvalidated Inputs in Administrative Functions
XDoorBaseToken.sol
L318-337
Description

Multiple administrative functions with onlyOwner privileges, including setSwapPairList, setSwapRouter, batchSetFeeWhiteList, setExcludeHoldProvider, and setDividendRoundEndTime, lack essential input validation. These functions do not check for dangerous or nonsensical values, such as setting a critical address to address(0) or setting a duration to an excessively large number. This absence of validation creates a significant risk, as a compromised or malicious owner could abuse these functions to disrupt or permanently break core protocol mechanics. For example, setting the dividend round end time to a near-infinite value would permanently lock all current and future dividend funds within the DividendDistributor contract. Similarly, setting the zero address as a swap pair could corrupt the fee-handling logic, leading to unpredictable behavior. These vulnerabilities stem from an over-reliance on the owner to always provide correct and safe inputs, creating a major centralization risk.

Comments

Implement strict input validation using require statements at the beginning of every administrative function. These checks should prevent critical address parameters from being set to address(0) and enforce sensible bounds on numerical inputs, such as timestamps and durations, to prevent them from being set to zero or excessively large values. Additionally, checks can be added to prevent redundant state changes (e.g., adding an address to a whitelist if it's already there) to save gas and prevent errors. These measures will significantly harden the protocol against both malicious attacks and accidental operator error.

informational Issues | 1 findings

Acknowledged

#1 informational Issue
Centralized Fomo3d Admin Role
XDoorBaseToken.sol
L56-83
Description

During deployment, the XDoorBaseToken constructor creates the Fomo3d contract and assigns its administrative role (ADMIN_ROLE) to the msg.sender. The msg.sender in this context is the externally owned account (EOA) that deploys the main XDoor contract. This results in a single EOA having privileged control over the Fomo3d game's critical parameters, including prize ratios, countdown timers, and round durations While this is a common pattern for initial project deployment, it represents a significant centralization of power. The security of the Fomo3d contract and its prize pool is entirely dependent on the security of the deployer's private key. If this key were to be compromised, an attacker could manipulate the game's rules to their advantage, potentially draining the prize pool.

Comments

For enhanced decentralization and security, the project team may consider transferring the ADMIN_ROLE from the deployer EOA to an on-chain governance mechanism, such as a Timelock contract controlled by the protocol's owner. This would create a more robust and trust-minimized system by requiring administrative changes to be publicly announced and time-delayed before taking effect.