Permanent Lockout from Vault Auto-Deployment due to Stale State

Unbounded-Loop DoS in `VotingPowerProviderLogic`

Unauthorized fund claim for Solana cross-chain refunds via flawed recipient Determination

Users' assets sent to Bitcoin will be permanently lost if the cross-chain transfer reverts.

Incorrect Logic in onlyOperator Modifier Leading to Denial-of-Service for Authorized Operators Across Critical Functions

Incorrect listing type validation bypasses enforcement of minimum purchase amount

Wrong Price Staleness Check in `currentValue()` Causes Outdated Prices to be used in the Protocol

Minting zero tokens when underlyingToken is not Ether in cashIn()

`withdraw_liquidity` lacks slippage protection

Liquidity providers can lose tokens due to disproportionate deposits not being properly handled

Incorrect encoding of `questionId` field in `hashProposal` function breaks `EIP-712` compatibility

First liquidity provider of a stable pair can DOS the pool

Incorrect withdraw queue balance in TVL calculation

Withdrawals logic allows MEV exploits of TVL changes and zero-slippage zero-fee swaps

Lack of slippage and deadline during withdraw and deposit

Missing calls to `_updateTokenInRegistry` leads to incorrect state of tokens in registry

`Keepers` does not implement EIP712 correctly on multiple occasions

Can mint NFT with the desired attributes by reverting transaction