Security Researcher
running @onlypwner; #4 @immunefi; bug bounties, mev, dev; dm for quality audits & evm-based development
High
Total
Medium
Total
Total Earnings
#322 All Time
Payouts
2nd Places
Top 10
Top 25
All
Sherlock
Code4rena
CodeHawks
Jan '24
high
Unrestricted claiming of fees due to missing balance updates in `FeeSplitter`
high
Unauthorized Access to setCurves Function
medium
Selling will be bricked if all other tokens are withdrawn to ERC20 token
medium
onBalanceChange causes previously unclaimed rewards to be cleared
medium
Withdrawing with amount = 0 will forcefully set name and symbol to default and disable some functions for token subject
Jul '23
high
Sandwich attack to steal all ERC-20 tokens in the Fees contract
high
Forcing a borrower to pay a huge debt via the giveLoan()
high
Lender can Sandwich a borrower to seize his collateral
medium
The `borrow` and `refinance` functions can be front-run by the pool lender to set high interest rates
medium
Single-step process for critical ownership transfer is risky
medium
Lender contract can be drained by re-entrancy in `seizeLoan`
medium
Fixed fee level is used when swap tokens on Uniswap
66.99 USDC • 3 total findings • CodeHawks • Bobface
#29
Feb '23
Jan '23
Dec '22