Users' newly created positions can be prematurely closed and removed from the vault directly after they are created

Due to interest rates update method, Interest-Free Loans are possible and the Cost of DoS are reduced

Unrestricted claiming of fees due to missing balance updates in `FeeSplitter`

Unauthorized Access to setCurves Function

Protocol and referral fee would be permanently stuck in the Curves contract when selling a token

Selling will be bricked if all other tokens are withdrawn to ERC20 token

A subject creator within a single block can claim holder fees without holding due to unprotected reentrancy path

onBalanceChange causes previously unclaimed rewards to be cleared

PnL system can be broken by large users intentionally or unintentionally.