transfer-from

transfer-from uses arbitrary `from`

codeql query run codeql-research/solidity/ql/lib/slither-arbitrary-send-erc20.ql -d /path-to-database/

Based on the arbitrary-send-erc20 detector from Slither. Detects wrongful usage of an arbitrary from variable in a transfer call.

Use msg.sender instead.

contract A{  
    function a(address from, address to, uint256 amount) public {
        erc20.transferFrom(from, to, amount);
    }
}

contract A{  
    function a(address from, address to, uint256 amount) public {
        erc20.transferFrom(msg.sender, to, amount);
    }
}