Unauthorized Token Transfers Due to Public payWithERC20 Function

Incorrect calculation of user tokens when previous currency amount is greater than new currency amount

Incorrect Handling of Intermediate Token Balance in Two-Hop Swaps

Missing Timestamp Validation for Pyth Oracle Price Feeds Leading to Stale Data Use

Missing slippage protection in `AerodromeDexter.sol` `swapExactTokensForTokens()`

In `transferVesting`, the `grantorVesting.releaseRate` is calculated incorrectly, which leads to the sender being able to unlock more tokens than were initially locked.

Users can claim more that their actual allotment

ERC20.approve Used Instead of Safe Approvals, Causing Pool Failures with Some ERC20s

Unused Allowance Causing Reverts in execute Function

Integer Division Truncation Leading to Unexpected Reward Distribution

Anyone can manipulate user nonce (nonce_manager) in settlement contract