https://sherlock-files.ams3.digitaloceanspaces.com/profile_images/6c106d4a-abfc-4e1b-8851-1d9537602345.jpg

ChinmayF

Security Researcher | ASR at Spearbit

Contact Me

High

21

Total

Medium

4

Solo

25

Total

$26.37K

Total Earnings

#300 All Time

21x

Payouts

silver

2x

2nd Places

bronze

1x

3rd Places

regular

7x

Top 10

All

Sherlock

Code4rena

Cantina

Dec '24

Oku's New Order Types Contract Contest

Oku's New Order Types Contract Contest

7.07 OP • 4 total findings • Sherlock • ChinmayF

#29

high

Attacker can misuse token approvals by creating orders in OracleLess.sol

high

Attacker can abuse order creation to steal escrowed funds

high

OracleLess contract escrowed funds can be completely drained

medium

All swap calls to any target address can be easily DOS'ed

Nov '24

Nouns DAO - Auction Streams

Nouns DAO - Auction Streams

1,436.95 USDC • Sherlock • ChinmayF

silver

Sep '24

symbioticfi-core

symbioticfi-core

211.51 USDC • 1 total finding • Cantina • chinmay

#22

medium

Finding not yet public.

Jul '24

LoopFi

LoopFi

242.51 USDC • 2 total findings • Code4rena • Chinmay

#29

high

Liquidation doesn't account for penalty when calculating collateral to give, allowing users to profit by borrowing and self-liquidating

medium

Incorrect calculation of `newCumulativeIndex` in function `calcDecrease`

MagicSea - the native DEX on the IotaEVM

MagicSea - the native DEX on the IotaEVM

1,706.99 USDC • 11 total findings • Sherlock • ChinmayF

#5

high

Voting is not possible when any Bribe rewarder is set for a period

high

Voters will lose all bribe rewards forever if they do not claim their rewards after the last bribing period

high

Gross undercalculation of rewards in BribeRewarder leads to permanent loss of rewards for all users

high

Funds unutilized for rewards may get stranded in BribeRewarder

high

Double voting is possible in Voter contract

medium

Anyone can add to someone's else staking position in MLUMStaking and potentially extend their lock duration

medium

Lock duration calculation in addToPosition() is wrong when stakedToken in MLUMStaking is a fee-on-transfer token

medium

Harvested rewards sent to the wrong address in case of renewLock and extendLock flows

medium

Approved address is allowed to call harvestPositionsTo but the call fails due to conflicting checks

medium

Users can open positions with zero lock duration and still earn rewards

medium

Voting and bribe rewards can be hijacked during emergency unlock by already existing positions

Velocimeter

Velocimeter

619.30 USDC • 3 total findings • Sherlock • Chinmay

#15

high

Incorrect reward distribution when t == roundedTimestamp in RewardsDistributor

high

disabling max lock does not correctly reset maxLockIdToIndex leading to some tokenIDs permanently stuck

medium

First liquidity provider of a stable pair can DOS the pool

Jun '24

Vultisig

Vultisig

224.72 USDC • 2 total findings • Code4rena • Chinmay

#14

high

Most users won't be able to claim their share of Uniswap fees

medium

Transfer of ILOPool NFT token to different account allows for users to bypass the pool's `maxCapPerUser` invariant

Feb '24

100x

100x

2,934.63 USDC • Sherlock • Chinmay

bronze

Findings not publicly available for private contests.

Jan '24

incentive-contracts

incentive-contracts

2,237.33 USDC • 7 total findings • Cantina • chinmay

#9

high

Finding not yet public.

high

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

medium

Finding not yet public.

Dec '23

Ethereum Credit Guild

Ethereum Credit Guild

615.68 USDC • 5 total findings • Code4rena • Chinmay

#22

high

The userGaugeProfitIndex is not set correctly, allowing an attacker to receive rewards without waiting

high

Users staking via the `SurplusGuildMinter` can be immediately slashed when staking into a gauge that had previously incurred a loss

high

The creation of bad debt (`mark-down` of Credit) can force other loans in auction to also create bad debt

medium

SurplusGuildMinter.getReward() is susceptible to DoS due to unbounded loop

medium

LendingTerm::debtCeiling() can return wrong debt as the min() is evaluated incorrectly

Aug '23

Cooler Update

Cooler Update

171.61 USDC • 2 total findings • Sherlock • Chinmay

#12

high

Borrower can steal collateral without repaying the loan

medium

Lender can roll the loan on his own wish

Jun '23

Ajna Update

Ajna Update

6,799.55 USDC • 3 total findings • Sherlock • Chinmay

silver

high

The kick function uses outdated LUP to update Interest State

medium

Wrong Inflator used in calculating HTP to determine accrualIndex in accrueInterest

medium

KickerActions uses wrong check to prevent Kickers from using deposits below LUP for KIckWithDeposit

Apr '23

GMX Update

GMX Update

7,937.23 USDC • 2 total findings • Sherlock • Chinmay

#5

high

Token Amounts is incorrectly added to Remaining collateral's USD Value in DecreasePositionUtils.sol

medium

An Oracle Signer can never be removed even if he becomes malicious

Mar '23

Gitcoin

Gitcoin

37.39 USDC • Sherlock • Chinmay

#58

Taurus

Taurus

30.89 USDC • 1 total finding • Sherlock • Chinmay

#12

medium

modifyPositions functionality may unnecessarily fail

Feb '23

Surge

Surge

3.65 USDC • 1 total finding • Sherlock • Chinmay

#22

high

First depositors in a pool may lose their funds because of wrong shares calculation

Blueberry

Blueberry

14.61 USDC • 1 total finding • Sherlock • Chinmay

#35

medium

Chainlink API may return stale prices

Jan '23

Ajna

Ajna

993.77 USDC • 1 total finding • Sherlock • Chinmay

#9

medium

Buypunk function of Cryptopunks in ERC721Pool is used incorrectly

Aug '22

Fraxlend (Frax Finance) contest

Fraxlend (Frax Finance) contest

25.75 USDC • Code4rena • Chinmay

#65

Rigor Protocol contest

Rigor Protocol contest

22.03 USDC • Code4rena • Chinmay

#70

Jul '22

Golom contest

Golom contest

94.66 USDC • Code4rena • Chinmay

#75