0xf15ers

Security Researcher

Contact Me

High

Total

Medium

Total

$9.29K

Total Earnings

#605 All Time

33x

Payouts

1x

Top 10

7x

Top 25

23x

Top 50

All

Sherlock

Code4rena

Sep '22

Frax Ether Liquid Staking contest

28.07 USDC • Code4rena • 0xf15ers

#67

VTVL contest

18.87 USDC • Code4rena • 0xf15ers

#76

Aug '22

Sentiment

3.50 USDC • 1 total finding • Sherlock • 0xf15ers

#26

medium

Oracle `latestRoundData` might return stale or incorrect results

FIAT DAO veFDT contest

77.72 USDC • 1 total finding • Code4rena • 0xf15ers

#35

medium

ERROR IN UPDATING **_checkpoint** IN THE **increaseUnlockTime** FUNCTION

Rigor Protocol contest

40.62 USDC • Code4rena • 0xf15ers

#68

Jul '22

Axelar Network v2 contest

56.13 USDC • Code4rena • 0xf15ers

#43

Golom contest

167.73 USDC • Code4rena • 0xf15ers

#64

ENS contest

83.57 USDC • Code4rena • 0xf15ers

#62

Fractional v2 contest

62.31 USDC • Code4rena • 0xf15ers

#85

Juicebox V2 contest

146.38 USDC • 2 total findings • Code4rena • 0xf15ers

#34

high

ORACLE DATA FEED CAN BE OUTDATED YET USED ANYWAYS WHICH WILL IMPACT ON PAYMENT LOGIC

medium

Use a safe transfer helper library for ERC20 transfers

Jun '22

Putty contest

83.79 USDC • Code4rena • 0xf15ers

#50

Nibbl contest

46.17 USDC • Code4rena • 0xf15ers

#35

Yieldy contest

80.04 USDC • Code4rena • 0xf15ers

#52

Illuminate contest

126.4 USDC • Code4rena • 0xf15ers

#51

Nested Finance contest

104.6 USDC • Code4rena • 0xf15ers

#14

Infinity NFT Marketplace contest

505.47 USDC • 3 total findings • Code4rena • 0xf15ers

#22

high

Accumulated ETH fees of InfinityExchange cannot be retrieved

high

`_transferNFTs()` succeeds even if no transfer is performed

medium

InfinityExchange computes gas refunds in a way where the first order's buyer pays less than the later ones

Canto contest

4,445.77 USDC • 3 total findings • Code4rena • 0xf15ers

high

WETH.allowance() returns wrong result.

high

Comptroller uses the wrong address for the WETH contract

medium

Incorrect amount taken

Connext Amarok contest

283.8 USDC • Code4rena • 0xf15ers

#29

Notional x Index Coop

159.11 USDC • Code4rena • 0xf15ers

#20

May '22

Backd Tokenomics contest

171.81 USDC • Code4rena • 0xf15ers

#26

veToken Finance contest

152.48 USDT • Code4rena • 0xf15ers

#47

Velodrome Finance contest

125.19 USDC • 1 total finding • Code4rena • 0xf15ers

#45

medium

Malicious user can populate `rewards` array with tokens of their interest reaching limits of `MAX_REWARD_TOKENS`

Rubicon contest

82.94 USDC • Code4rena • 0xf15ers

#68

Sturdy contest

86.25 USDC • 1 total finding • Code4rena • 0xf15ers

#27

high

The check for value transfer success is made after the return statement in _withdrawFromYieldPool of LidoVault

Aura Finance contest

234.74 USDC • Code4rena • 0xf15ers

#34

Cally contest

124.84 USDC • 2 total findings • Code4rena • 0xf15ers

#27

medium

Owner can modify the feeRate on existing vaults and steal the strike value on exercise

medium

User's may accidentally overpay in `buyOption()` and the excess will be paid to the vault creator

Enso Finance contest

276.93 USDT • Code4rena • 0xf15ers

#39

Alchemix contest

91.84 DAI • Code4rena • 0xf15ers

#42

FactoryDAO contest

451.07 DAI • 1 total finding • Code4rena • 0xf15ers

#17

medium

DoS: Attacker may significantly increase the cost of `withdrawExcessRewards()` by creating a significant number of excess receipts

Cudos contest

75.66 USDC • Code4rena • 0xf15ers

#47

Forgotten Runes Warrior Guild contest

45.77 USDC • Code4rena • 0xf15ers

#52

Apr '22

PoolTogether Aave v3 contest

197.13 USDC • Code4rena • 0xf15ers

#16

AbraNFT contest

657.08 MIM • 1 total finding • Code4rena • 0xf15ers

#16

high

The return value `success` of the get function of the INFTOracle interface is not checked