https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/187aa9b8-e2b1-4a8c-820f-05a1cc9cc4a5.jpg

0xboriskataa

Security Researcher

I see bug, I kill bug

Contact Me

High

Total

Medium

Total

$319.00

Total Earnings

#1499 All Time

6x

Payouts

1x

2nd Places

1x

3rd Places

2x

Top 10

All

Sherlock

Jul '24

MagicSea - the native DEX on the IotaEVM

2.35 USDC • 2 total findings • Sherlock • 0xboriskataa

#59

high

Incorrect `msg.sender` expected

medium

An attacker can prevent anyone from unstaking in `MlumStaking.sol`

May '24

Tokensoft Distributor Contracts Update

303.16 USDC • 1 total finding • Sherlock • 0xboriskataa

medium

0 data input might break functionality

Apr '24

TITLES Publishing Protocol

3.79 USDC • 2 total findings • Sherlock • 0xboriskataa

#51

high

Collection referrers will get no fees because of incorrect reward distribution

medium

`_refundExcess()` will not work as intended

Zivoe

4.12 USDC • 2 total findings • Sherlock • 0xboriskataa

#54

high

Attacker can manipulate other users' staking rewards with `depositReward()`

medium

`pushToLockerMulti()` in `OCL_ZVE` expects zero slippage

Mar '24

RadicalxChange

1.18 USDC • 1 total finding • Sherlock • 0xboriskataa

high

Highest bidder can cancel bid and win auction for free

Axis Finance

5.04 USDC • 1 total finding • Sherlock • 0xboriskataa

#28

high

Routing info is always stored at 0 slot of `lotRouting[]` mapping