Solidity Development #587

Mercure28 · 2025-02-08T18:12:02Z

Mercure28
Feb 8, 2025

What is the difference between msg.senderand tx.originand why is it dangerous to use tx.origin?

Feb 8, 2025

msg.sender: Refers to the address that called the function (can be a contract or a user).
tx.origin: Refers to the address of the user who initiated the transaction (does not change, even if multiple contracts are called).
Problem withtx.origin : It exposes the contract to phishing attacks . An attacker can create a contract that calls your contract with tx.origin, thus exploiting the verification logic.

Solution : Always use msg.senderto verify caller ID.

View full answer

TatyOko28 · 2025-02-08T19:01:39Z

TatyOko28
Feb 8, 2025

msg.sender: Refers to the address that called the function (can be a contract or a user).
tx.origin: Refers to the address of the user who initiated the transaction (does not change, even if multiple contracts are called).
Problem withtx.origin : It exposes the contract to phishing attacks . An attacker can create a contract that calls your contract with tx.origin, thus exploiting the verification logic.

Solution : Always use msg.senderto verify caller ID.

0 replies

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Recode Hive

Solidity Development #587

Uh oh!

{{title}}

Uh oh!

Replies: 1 comment

Uh oh!

{{title}}

Uh oh!

Select a reply

Uh oh!

Recode Hive

Solidity Development #587

Uh oh!

Mercure28 Feb 8, 2025

Replies: 1 comment

Uh oh!

TatyOko28 Feb 8, 2025

Mercure28
Feb 8, 2025

TatyOko28
Feb 8, 2025