Implementation can be self destruct by deployer, effectively break all running sale and lock all assets.

Lines of code Vulnerability details Impact Sale in Escher is deployed using minimal proxy pattern, where there is only 1 implementation contract is deployed to save deployment gas. Also, in Open Edition and FixedPrice sale, when sale is not started yet, owner can cancel it, self destruct the prox...

The vulnerability lies in the implementation of the __destruct() and dispatch($command) functions in the Laravel PHP framework, which allow a hacker to execute arbitrary code.

The vulnerability of implementing the destruct and dispatch$command functions in the Laravel PHP framework is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...