BTC $105,107.83 0.04%
ETH $2,542.85 0.43%
SOL $146.09 0.53%
PEPE $0.000011 2.16%
SHIB $0.000012 2.58%
DOGE $0.17 0.78%
XRP $2.16 0.93%
ETH Gas (gwei) 0.54
Cryptonews DeFi News

Virtuals Protocol Fixes Critical Bug, Rewards Security Researcher

Virtuals Protocol has fixed a critical bug in its smart contract and relaunched its bug bounty program to reward security researchers for future discoveries.
Journalist
Hassan Shittu
Journalist
Hassan Shittu
About Author

Hassan, a Cryptonews.com journalist with 6+ years of experience in Web3 journalism, brings deep knowledge across Crypto, Web3 Gaming, NFTs, and Play-to-Earn sectors. His work has appeared in...

Author Profile
Last updated: 
Why Trust Cryptonews
Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas - from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews
Virtuals Protocol Fixes Critical Bug, Rewards Security Researcher

Virtuals Protocol, a blockchain firm specializing in artificial intelligence agents, has resolved a critical bug in one of its audited smart contracts.

A pseudonymous security researcher identified a critical vulnerability in the project audited contract, prompting an urgent fix. The company has also relaunched its bug bounty program to prevent future vulnerabilities.

Virtuals Protocol Vulnerability Could Block Token Launches: Is This A Smart Contract Bug Or Feature?

On December 3, 2024, pseudonymous security researcher Jinu discovered a critical vulnerability in one of Virtuals Protocol’s audited smart contracts.

The researcher promptly reported the issue to Virtuals Protocol, but the company did not have an active bug bounty program.

Consequently, despite its potential impact on the protocol’s ecosystem, the discovery did not qualify for a reward.

The vulnerability stemmed from the platform token-launching mechanism on Uniswap V2 has been exposed.

The flaw lies in how Virtuals creates token pairs, a process similar to Pump.fun’s method of launching tokens through price thresholds and bonding mechanisms.

Security researcher Jinu identified a critical issue that could block Virtuals from launching new tokens.

He pointed out that the AgentToken creation process uses the Clones library, which makes future token addresses predictable based on the AgentFactoryV3 contract’s nonce.

Additionally, the initialize function in the AgentToken contract calls Uniswap V2’s createPair function without verifying if a pair already exists.

If one does, Uniswap V2’s factory reverts the transaction. This flaw also enables the creation of pairs with non-existent contracts.

An attacker could exploit this by preemptively creating a Uniswap pair with the predicted nonce, preventing Virtuals from launching its tokens. Jinu demonstrated this exploit using a proof of concept on Tenderly.

Jinu recommended modifying the AgentToken.sol contract to check for existing pairs in Uniswap V2 before attempting creation, skipping the process if a pair already exists.

Despite the severity of the issue, Virtuals did not respond, even closing its dedicated Discord group meant for reporting vulnerabilities.

Jinu expressed frustration at the oversight, remarking, “I’m surprised that a project as big and hot as Virtuals doesn’t care about security.”

Virtuals Protocol Appreciate Jinu for Highlighting Flaw: What’s Next for Bug Bounties?

Following Jinu’s public disclosure of the issue on X (formerly Twitter), Virtuals Protocol contacted Jinu and implemented a rapid fix.

The company acknowledged the bug’s severity and apologized for the initial miscommunication.

In a message to Jinu, Virtuals Protocol said:

“We have verified the vulnerability and applied a patch. Thank you for bringing this to our attention. We apologize for the miscommunication and will review the severity of the issue to determine a bug bounty.”

They patched the vulnerability by updating the contract to include the necessary validation steps. For transparency, the new contract and fix details were published on BaseScan and GitHub.

However, Virtuals Protocol has yet to confirm the reward amount for Jinu’s discovery. The company stated that it internally assesses the impact of the vulnerability before issuing a bounty.

Price Analysis
Bitcoin Price Prediction: BTC Crashes to $103K as Binance Enters Syria and BlackRock Eyes Crypto Crown
2025-06-13 02:37:20
,
by Arslan Butt
Bitcoin News
Bitcoin Price Dips Below $104K After Israeli Strikes on Iran Spark Global Selloff
2025-06-13 03:42:55
,
by Amin Ayan
Altcoin News
$151M XRP Withdrawn From Binance in 24 Hours — Are Whales Accumulating?
2025-06-12 06:54:36
,
by Amin Ayan
Best Crypto to Buy Now in June 2025 – Top Crypto to Invest In
2025-05-06 11:00:00
,
by Alan Draper
Best New Crypto Coins to Invest In 2025 – Top New Cryptocurrencies
2025-05-06 05:05:39
,
by Ines S. Tavares
13 Best Crypto Presales to Invest In 2025 – Presale Crypto List
2025-03-03 00:01:51
,
by Alan Draper
12 New & Upcoming Coinbase Listings in June 2025
2025-04-13 09:45:30
,
by Ilija Rankovic
13 New & Upcoming Binance Listings in 2025
2025-05-05 04:00:00
,
by Ines S. Tavares
What Is the Next Crypto to Explode in 2025?
2024-09-11 14:50:06
,
by Ilija Rankovic
Bitcoin (BTC) Price Prediction 2025 – 2030
2024-10-19 00:00:00
,
by Leon Waters
Ripple (XRP) Price Prediction 2025, 2026 – 2030
2024-08-28 00:00:00
,
by Eric Huffman
Ethereum Price Prediction 2025–2030: Will ETH Bounce Back?
2024-08-28 00:00:00
,
by Ben Beddow
Logo

Why Trust Cryptonews

2M+
Active Monthly Users Around the World
250+
Guides and Reviews Articles
8
Years on the Market
70
International Team Authors
editors
+ 66 More
Authors List

Best Crypto ICOs

Discover trending tokens still in presale — early-stage picks with potential

Explore Our Tools

Smart tools made for everyday crypto users

Market Overview

  • 7d
  • 1m
  • 1y
Market Cap
$3,397,253,595,106
-0.53
Trending Crypto
Price Analysis
Bitcoin Price Prediction: BTC Crashes to $103K as Binance Enters Syria and BlackRock Eyes Crypto Crown
2025-06-13 02:37:20
,
by Arslan Butt
Bitcoin News
Bitcoin Price Dips Below $104K After Israeli Strikes on Iran Spark Global Selloff
2025-06-13 03:42:55
,
by Amin Ayan
Altcoin News
$151M XRP Withdrawn From Binance in 24 Hours — Are Whales Accumulating?
2025-06-12 06:54:36
,
by Amin Ayan
Best Crypto to Buy Now in June 2025 – Top Crypto to Invest In
2025-05-06 11:00:00
,
by Alan Draper
Best New Crypto Coins to Invest In 2025 – Top New Cryptocurrencies
2025-05-06 05:05:39
,
by Ines S. Tavares
13 Best Crypto Presales to Invest In 2025 – Presale Crypto List
2025-03-03 00:01:51
,
by Alan Draper
12 New & Upcoming Coinbase Listings in June 2025
2025-04-13 09:45:30
,
by Ilija Rankovic
13 New & Upcoming Binance Listings in 2025
2025-05-05 04:00:00
,
by Ines S. Tavares
What Is the Next Crypto to Explode in 2025?
2024-09-11 14:50:06
,
by Ilija Rankovic
Bitcoin (BTC) Price Prediction 2025 – 2030
2024-10-19 00:00:00
,
by Leon Waters
Ripple (XRP) Price Prediction 2025, 2026 – 2030
2024-08-28 00:00:00
,
by Eric Huffman
Ethereum Price Prediction 2025–2030: Will ETH Bounce Back?
2024-08-28 00:00:00
,
by Ben Beddow

More Articles

Bitcoin News
Hong Kong Legislator Proposes Adding Bitcoin to National Reserves for Financial Security
Ruholamin Haqshanas
Ruholamin Haqshanas
2024-12-30 10:59:54
Blockchain News
Web3 Security Firm Blockaid Launches Dashboard for Threat Analysis
Tanzeel Akhtar
Tanzeel Akhtar
2024-12-19 14:12:08
Hassan Shittu
Journalist
Hassan, a Cryptonews.com journalist with 6+ years of experience in Web3 journalism, brings deep knowledge across Crypto, Web3 Gaming, NFTs, and Play-to-Earn sectors. His work has appeared in Blockchainjournals, NFT Plazas, Crypto User Guide, PlayToEarn Diary, and Crypto Basic.
Read More
Crypto News in numbers
editors
Authors List + 66 More
2M+
Active Monthly Users Around the World
250+
Guides and Reviews Articles
8
Years on the Market
70
International Team Authors