Remove splitter will always revert if there are some rewards left on splitter contract

Upgrading `OperatorVCS` Contract Will Fail

Upgrade Initialization Logic Will Never Execute Due to Incorrect Initializer Usage in CommunityVCS

No way to update unbonding and claim periods

Due To The `minWithdrawalAmount` check Users Who Want To Withdraw Wont Be Able To Queue Their Token Withdrawals On Some Amounts

TokenManager - Unlimited withdraw

Native token withdrawal fails until manually approved

[H-4] The function `PreMarkets::listOffer` charges an incorrect collateral amount, allowing users to manipulating collateral rates and drain the protocol's funds

The user will be able to close Bid Offer even in case if marketplace is not in BidSettling

`Tokens` Are Automatically Whitelisted Upon Creation And Binding Even When `_whiteListEnabled == false`

Incorrect function signatures in `_callBaseUri` break `baseURI` functionality

function erc721Metadata returns empty base uri instead of token uris

Market Disruption and Financial Loss Post-Liquidation

A malicious User can DOS all offchain orders making them unexecutable and leaving the protocol in an insolvent state. Also all offchain Trades can also be DOSed for honest parties that do not meet the fillorder requirements (no try and catch)

Liquidation of accounts collateral not posible because some chainlink price feed doesn't exist or are marked as medium risk by chainlink

Incompatibility with Multisig Wallets in `TempleGold::send` Function

Use of CREATE method is suspicious of reorg attack

Cancelling a Merkle Lockup is only callable by `initialAdmin` even after `admin` had been modified

Stream sender is unable to cancel a stream with a pausable asset that is paused

Rewards can be drained because of lack of access control

Previous NFT owner can burn NFT from the new owner

`onERC721Received()` callback is never called when new tokens are minted in Erc721Facet.sol