`payWithERC20` could be exploited due to `public` visibility

Malicious actor can disrupt the reward distribution mechanics using trivial amounts

Unintended reverts in `resetVestingPlans` due to flawed condition

Users Can Overwrite Existing Locks in veRAACToken Resulting in Permanent Loss of Funds

Users can borrow more assets than they have deposited as collateral

NFTs Get Permanently Locked in Stability Pool After Liquidation

Attackers can double voting power and veToken amount by locking and increasing

Timelock Controller Retains Canceled Proposals, Enabling Unauthorized Execution and severe Governance Voting manipulation.

`MAX_TOTAL_SUPPLY` Bypass in `veRAACToken` via `increase()` Function

Liquidation Cannot Be Closed Even With Healthy Position Due To Strict Debt Check

There is no logic checking for RAACNFT price staleness before minting it

Unrestricted proposal cancellation allows governance process manipulation

Wrong access control in `RAACToken::setFeeCollector`, `RAACToken::setSwapTaxRate`, `RAACToken::setBurnTaxRate`

Incorrect Utilization Rate Calculation in `updateInterestRatesAndLiquidity`

`ReserveLibrary.getNormalizedDebt` doesn't return normalized debt

Limited veRaac Token Supply Triggers DoS, Hampering Proper Governance Participation.

Canceled vote still get voted on and accumulate voting power in Goverance.sol

Lack of enforcement of the `MAX_TOTAL_LOCKED_AMOUNT`

Impossible to rescue funds from `RToken` contract

`FeeCollector::updateFeeType` wrong fee share validation leads to impossible update for some fee types

Incorrect Timestamp Tracking in RAACHousePrice contract

Incorrect Logic in onlyOperator Modifier Leading to Denial-of-Service for Authorized Operators Across Critical Functions

There is no function to claim Aave Incentives

`FjordAuction` incorrect `block.timestamp` check allows users to bid after calling `auctionEnd` to claim more tokens than they should

`mintToken()`, `mintWithBudget()`, and `forge()` in the `TraitForgeNft` Contract Will Fail Due to a Wrong Modifier Used in `EntropyGenerator.initializeAlphaIndices()`

The maximum number of generations is infinite

Number of entities in generation can surpass the 10k number

Griefing attack on seller's airdrop benefits

Wrong minting logic based on total token count across generations

Forger Entities can forge more times than intended

Duplicate NFT generation via repeated forging with the same parent

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

Invalid validation allows users to unlock early

Single plot can be occupied by multiple renters

Players can gain more NFTs benefiting from that past remainder in subsequent locks

TempleGold tokens cannot be recovered when a `DaiGoldAuction` ends with 0 bids

Incorrect Handling of Last Nominee Removal in `removeNominee` Function

Malicious User can call `lockOnBehalf` repeatedly extend a users `unlockTime`, removing their ability to withdraw previously locked tokens

Invalid validation allows users to unlock early

Single plot can be occupied by multiple renters

Players can gain more NFTs benefiting from that past remainder in subsequent locks

Incorrect modifier condition

No incentive to liquidate small positions could result in protocol going underwater

Attacker can drain all ETH from AuctionDemo when block.timestamp == auctionEndTime

Attacker can reenter to mint all the collection supply

Multiple mints can brick any form of `salesOption` 3 mintings

If an airdrop happens before a mint the price could skyrocket