CertiK warns: NFT marketplaces using flash loans & `delegatecall` in offer logic (`makeOffer`, `acceptOffer`) are vulnerable to exploits! Attackers can use zero-fee loans for abnormal asset transfers, enabling "trace-free exit." No losses reported, but review permission control & validation ASAP!

#crypto #blockchain #news