Security Researcher
Smart Contract Security Researcher interested in integrating and securing new & blue-chipped blockchain protocols.
High
Total
Medium
Solo
Total
Total Earnings
#81 All Time
Payouts
2nd Places
3rd Places
Top 10
All
Sherlock
Code4rena
Cantina
CodeHawks
Immunefi
Mar '25
Collaborative Audit • Sherlock • Bauchibred
Feb '25
Collaborative Audit • Sherlock • Bauchibred
Jan '25
medium
medium
medium
Dec '24
Nov '24
medium
Liquidity providers can lose tokens due to disproportionate deposits not being properly handled
medium
`withdraw_liquidity` lacks slippage protection
medium
Amplifiers can't be ramped allowing loss of funds from the pool
medium
Penalty fees can be shared among future farms or expired farms, risks of exploits
Oct '24
high
Zero rates on new quoted tokens allow an attacker to take an interest free quota
high
`Flashlender.sol#flashLoan()` should use `mintProfit()` to mint fees. The current implemetation may lead to locked up WETH in PoolV3.
medium
`BalancerOracle::update()` can return stale price
medium
Honest users could be permanently DOS'd from withdrawing their vested tokens/rewards
medium
Lack of Slippage Control in `AuraVault::deposit` and `AuraVault::mint` Functions Can Lead to Unexpected Financial Losses for Users
medium
`PendleLPOracle::_fetchAndValidate` uses Chainlink's deprecated `answeredInRound`
medium
`PositionAction.sol#onCreditFlashLoan` may have leftover tokens after conducting `leverParams.auxSwap`.
medium
`PositionActionPendle.sol#_onWithdraw` does not have slippage parameter minOut set.
high
high
medium
Sep '24
medium
Aug '24
medium
high
medium
medium
medium
medium
Jul '24
high
Zero rates on new quoted tokens allow an attacker to take an interest free quota
high
`Flashlender.sol#flashLoan()` should use `mintProfit()` to mint fees. The current implemetation may lead to locked up WETH in PoolV3.
medium
`BalancerOracle::update()` can return stale price
medium
Honest users could be permanently DOS'd from withdrawing their vested tokens/rewards
medium
Lack of Slippage Control in `AuraVault::deposit` and `AuraVault::mint` Functions Can Lead to Unexpected Financial Losses for Users
medium
`PendleLPOracle::_fetchAndValidate` uses Chainlink's deprecated `answeredInRound`
medium
`PositionAction.sol#onCreditFlashLoan` may have leftover tokens after conducting `leverParams.auxSwap`.
medium
`PositionActionPendle.sol#_onWithdraw` does not have slippage parameter minOut set.
Jun '24
May '24
medium
LibUsdOracle is completely broken for the to-deploy L2 chain
medium
Some users would be stuck on the L1 and not be able to migrate their Beans to the L2
low
The `LibWeth` hardcodes the `WETH` address which makes it incompatible on the to-deploy L2 chain
low
`BeanL1RecieverFacet#recieveL1Beans()` would never work
low
ETH/USD 1 hour period is too large for Optimism/Base L2 Chains and too small for Arbitrum/Avalanche leading to consuming stale price data.
low
Mismatch in the `BRIDGE` address between the `BeanL1RecieverFacet` and `BeanL2MigrationFacet` contracts prevents the migration of Beans to L2
Apr '24
high
Withdrawals logic allows MEV exploits of TVL changes and zero-slippage zero-fee swaps
high
Withdrawals can be locked forever if recipient is a contract
medium
Pending withdrawals prevent safe removal of collateral assets
medium
Incorrect exchange rate provided to Balancer pools
medium
Lack of slippage and deadline during withdraw and deposit
medium
`calculateTVL` may run out of gas for modest number of operators and tokens breaking deposits, withdrawals, and trades
high
`SNXConnector.sol` TVL calculation is incorrect.
high
`executeWithdraw` may be blocked if any of the users are blacklisted from the `baseToken`
medium
PendleConnector.sol::supply doesn't pass a valid slippance protection min
medium
`totalAssets()`, and thus `convertToShares()` and `convertToAssets()`, may revert, in violation of ERC-4626
medium
Chainlink connector doesn’t check for the Min / Max prices returned
medium
`Keepers` does not implement EIP712 correctly on multiple occasions
medium
Lack of Slippage Controls in retrieveTokensForWithdraw Function
medium
Stale price can be used in `getValueFromChainlinkFeed` function
medium
Noya is not compatible with tokens whose balance changes outside of transfers causing funds to get stuck in the contract
medium
`CurveConnector` will be non-functional on Arbitrum & Polygon due to the improper integration with Convex Boosters on these chains
medium
Balancer flashloan contract can be DOSed completely by sending 1 wei to it
medium
Camelot and Aerodrome Connector TVL susceptible to manipulation attack
medium
Using the same heartbeat for multiple price feeds
medium
`PendlingConnector::depositIntoMarket()` `PendlingConnector::burnLP()` and are missing slippage control parameters.
Mar '24
medium
medium
Feb '24
high
medium
medium
medium
Jan '24
Dec '23
Nov '23
low
medium
271.43 USDC • 1 total finding • Code4rena • Bauchibred
#12
Oct '23
Sep '23
Aug '23
Jul '23
high
Sandwich attack to steal all ERC-20 tokens in the Fees contract
high
Fee on transfer tokens will cause users to lose funds
high
WETH staking rewards accumulated before the first staker deposits remain unutilized and stuck in the `Staking` contract
medium
No expiration deadline leads to losing a lot of funds
medium
Single-step process for critical ownership transfer is risky
medium
Pragma non-specification can lead to non-functional / corrupted contract when deployed on Arbitrum
low
Zero address leads to transaction reverts
low
Lender fails to giveLoan because of inconsistent length between `loadIds` and `poolIds`
low
Rounding error risk in borrow() function in Lender.sol
gas
Unnecessary If condition in update() of Staking.sol
gas
Lender.sol: The error being `PoolConfig` in most cases is completely a downside of protocol as users can't know the reasons to why their transaction failed
gas
Setter functions not checking if value changed
7.85 USDC • 7 total findings • CodeHawks • bauchibred
#85
medium
staleCheckLatestRoundData() does not check the status of the Arbitrum sequencer in Chainlink feeds.
medium
DSC protocol can consume stale price data or cannot operate on some EVM chains
medium
All of the USD pair price feeds doesn't have 8 decimals
medium
Lack of fallbacks for price feed oracle
medium
Too many DSC tokens can get minted for fee-on-transfer tokens.
low
Pragma isn't specified correctly which can lead to nonfunction/damaged contract when deployed on Arbitrum
gas
Use `==` instead for `<=` for `uints` when comparing for `zero` values
37.94 USDC • 2 total findings • CodeHawks • bauchibred
#54
Jun '23
May '23
high
USSD.sol: Missing Access Control in `mintRebalancer` and `burnRebalancer` Functions
high
Missing Deadline Checks in USSD Contract
high
USSDRebalancer.sol: Price Manipulation Vulnerability
high
Inactive ethOracle in StableOracleDAI Contract
medium
Missing Check for Stale Data in StableOracle Contracts
medium
Incorrect Price Calculation in Stable Oracles (WETH, WBTC, DAI) when Aggregator Hits minAnswer
medium
StableOracleWBTC use BTC/USD chainlink oracle to price WBTC which is problematic if WBTC depegs
Apr '23
Mar '23