audit

OpenWord

OpenWord is a decentralized, text-only publishing platform built on the Polygon blockchain. Every article is minted as an NFT, which means the author holds verifiable ownership of their work, keeps long-term control over it, and cannot have it quietly removed because a platform changes direction.
The model is simple: readers pay writers directly. There is no advertising engine in the background and no algorithm pushing creators to chase clicks. Writers earn through tipping, premium articles, and reputation built on real engagement. They keep almost everything they earn.
Authenticity is a requirement, not a slogan. Before minting, each submission passes through anti-AI detection and plagiarism filters designed to catch copied material and low-effort generated content. A multi-stage anti-spam system further limits abuse. Premium publishing is not unlocked by paying for it. It is earned through stricter contribution and reputation thresholds, ensuring that only consistent, trusted authors can charge readers for access.
The OW token has a fixed supply of 333 million and powers the platform’s core functions: tipping, premium access, interaction controls, and future governance. The infrastructure is transparent and blockchain-native, built around a clear principle: original writers deserve a system designed to protect their work and reward their effort.

Stops Transactions

Stale Pause State Variable

Unlimited Pause Re-invocation

Unreachable Pause Extension Logic

Unenforced Permit Deadline Constraints

Inherited Guard Never Used

Defined Event Never Emitted

Contract Centralization Risk

Redundant Storage Keyword

Potential Mocked Oracle Manipulation

Oracle Decimal Mismatch

Unused Sanity Check Constants

Precision Loss In USD Conversion

Zero Price Propagation Risk

Action Fee Disablement Cascade

Permissionless Price Update Submission

Stale Oracle Mode Activation

Static Mode Blocks Price Updates

External Oracle Liveness Dependency

Missing Signature Element

Dead Oracle Role Constant

Inconsistent Action Fee Validation

Permit Frontrunning Denial Of Service

Fee Fetched Twice

Missing Events Emission

Silently Ignored Royalty Parameter

Unbounded Chunk Gas Cost

Unrestricted Author Assignment

Unrestricted Minter Chunk Injection

Stale Pending Author Mapping

Author Control After Transfer

Deactivation State Not Enforced

Misleading Query Function

Mutable NFT Metadata

Unsafe UTF-8 Byte Truncation

Cross-Path Minting Interference

Unused SVG Generation Parameters

Broken SSTORE2 Content Storage

Royalty Snapshot Timing Mismatch

Expired Offer Cancellation Overlap

Permissionless Expired Offer 

Missing Buyer Slippage Protection

Revivable Stale Listing Exploit

Non-Escrowed NFT Listing Model

External Call Before State Updates

Ineffective Listing Cleanup

Zero Platform Fee On Tips

Premium Access Without Content Gating

Broken SSTORE2 Write Implementation

Underflow On Empty Contract Read

Bypassable XSS Detection Blocklist

UTF-8 Unsafe String Operations

Unused Libraries

Usage of Solidity Assembly

Stable Compiler Version

Byte Level Unsafe String Truncation

Badge Unsafe Encoding in Metadata

Dual MarketHub Setter Inconsistency

Zero Fee Cross-Contract Mismatch

 Immutable Reference Migration Desync

Stale Oracle Fee Usage

Category Unsafe Encoding in Metadata

Inconsistent Onchain Voucher Validation

🔒 Secure your project with Cyberscope!

💸 10% Discount on Banner Ads

Onboarded Date	26 May 2026
Requested Date	04 Jun 2026
Status	Finished

Severity	Code	Title	Update
⬤	ST	Stops Transactions	Unresolved
⬤	OTUT	Transfers User's Tokens
⬤	ELFM	Exceeds Fees Limit
⬤	MT	Mints Tokens
⬤	BT	Burns Tokens
⬤	BC	Blacklists Addresses
⬤	RFR	Royalty Front Running
⬤	PTMR	Premium Tier Manipulation Residual
⬤	IRMD	Immutable Reference Migration Desync
⬤	CCR	Contract Centralization Risk
⬤	MEE	Missing Events Emission
⬤	MNM	Mutable NFT Metadata
⬤	NNLM	Non-Escrowed NFT Listing Model
⬤	ODM	Oracle Decimal Mismatch
⬤	PAWCG	Premium Access Without Content Gating
⬤	TPCB	Token Pause Cross-Contract Block
⬤	UPR	Unlimited Pause Re-invocation
⬤	UAA	Unrestricted Author Assignment
⬤	L13	Divide before Multiply Operation
⬤	L17	Usage of Solidity Assembly

OpenWord

Audited

Findings