https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/d7bd1080-296d-4608-9806-25fd60921dc5.jpg

0xpetern

Security Researcher

Victory is for those who take it.

Contact Me

High

4

Total

Medium

7

Total

$1.88K

Total Earnings

#1040 All Time

17x

Payouts

gold

1x

1st Places

silver

1x

2nd Places

bronze

1x

3rd Places

All

Sherlock

Code4rena

Mar '25

Forte: Float128 Solidity Library

Forte: Float128 Solidity Library

45.17 USDC • Code4rena • 0xpetern

#25

PinLink: RWA-Tokenized DePIN Marketplace

PinLink: RWA-Tokenized DePIN Marketplace

6.48 USDC • Sherlock • 0xpetern

#56

Crestal Network

Crestal Network

0.01 USDC • 1 total finding • Sherlock • 0xpetern

#12

high

Unauthorized Token Transfers Due to Public payWithERC20 Function

Feb '25

Usual Labs

Usual Labs

79.91 USDC • Sherlock • 0xpetern

#33

Rova

Rova

0.04 USDC • 1 total finding • Sherlock • 0xpetern

bronze

medium

Incorrect calculation of user tokens when previous currency amount is greater than new currency amount

Jan '25

Peapods

Peapods

173.50 USDC • 1 total finding • Sherlock • 0xpetern

#23

medium

Incorrect Handling of Intermediate Token Balance in Two-Hop Swaps

Aave v3.3

Aave v3.3

147.28 USDC • Sherlock • 0xpetern

#69

Dec '24

Mach Finance

Mach Finance

615.38 USDC • 1 total finding • Sherlock • 0xpetern

gold

medium

Missing Timestamp Validation for Pyth Oracle Price Feeds Leading to Stale Data Use

Tally ARB Staker

Tally ARB Staker

147.75 USDC • Sherlock • 0xpetern

#17

Flex Perpetuals

Flex Perpetuals

62.48 USDC • 1 total finding • Code4rena • 0xpetern

#4

medium

Missing slippage protection in `AerodromeDexter.sol` `swapExactTokensForTokens()`

SecondSwap

SecondSwap

87.18 USDC • 2 total findings • Code4rena • 0xpetern

#31

high

In `transferVesting`, the `grantorVesting.releaseRate` is calculated incorrectly, which leads to the sender being able to unlock more tokens than were initially locked.

high

Users can claim more that their actual allotment

Teller Lender Groups Update Audit

Teller Lender Groups Update Audit

134.33 USDC • 1 total finding • Sherlock • 0xpetern

#6

medium

ERC20.approve Used Instead of Safe Approvals, Causing Pool Failures with Some ERC20s

Oku's New Order Types Contract Contest

Oku's New Order Types Contract Contest

3.99 OP • 1 total finding • Sherlock • 0xpetern

#37

medium

Unused Allowance Causing Reverts in execute Function

Nov '24

Nouns DAO - Auction Streams

Nouns DAO - Auction Streams

32.32 USDC • Sherlock • 0xpetern

#45

Telcoin Update #2

Telcoin Update #2

24.18 USDC • Sherlock • 0xpetern

#33

Oct '24

Gamma Brevis Rewarder

Gamma Brevis Rewarder

314.34 OP • 1 total finding • Sherlock • 0xpetern

silver

medium

Integer Division Truncation Leading to Unexpected Reward Distribution

Aug '24

Chakra

Chakra

1.75 USDT • 1 total finding • Code4rena • 0xpetern

#59

high

Anyone can manipulate user nonce (nonce_manager) in settlement contract